Nsa Ghidra vulnerabilities
22 known vulnerabilities affecting nsa/ghidra.
Total CVEs
22
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH11MEDIUM7LOW1
Vulnerabilities
Page 2 of 2
CVE-2026-52757P4MEDIUMCVSS 4.4fixed in 12.12026-06-10
CVE-2026-52757 [MEDIUM] CWE-416 CVE-2026-52757: Ghidra before 12.1 contains a heap-use-after-free vulnerability in the decompiler's HighVariable::me
Ghidra before 12.1 contains a heap-use-after-free vulnerability in the decompiler's HighVariable::merge() function during the variable merging pass. Attackers can trigger this vulnerability by crafting a binary that causes stale pointers in the HighIntersectTest::highedgemap cache to be dereferenced, reading and writing the flags field of freed heap
nvd
CVE-2024-58350P4MEDIUMCVSS 4.0fixed in 11.22026-06-10
CVE-2024-58350 [MEDIUM] CWE-758 CVE-2024-58350: Ghidra before 11.2 contains a use after free vulnerability in the Sleigh backend caused by undefined
Ghidra before 11.2 contains a use after free vulnerability in the Sleigh backend caused by undefined static initialization order of the SleighArchitecture::translators and XmlArchitectureCapability singletons. Attackers can trigger an infinite loop or denial of service during shutdown by exploiting the unsafe destruction order that causes iteration
nvd
← Previous2 / 2