Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/06/11 2:59 p.m.11 views

CVE-2026-52750

Ghidra before 12.1 contains a command injection vulnerability in URL annotation handling on Windows where cmd.exe metacharacters are not properly escaped. Attackers can execute arbitrary commands under the Ghidra user's privileges by embedding malicious URLs in program comments that victims click...

8.4CVSS5.9AI score0.00503EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/10 12:39 p.m.8 views

CVE-2026-52750 Ghidra < 12.1- Command Injection via URL Annotation Click

Ghidra before 12.1 contains a command injection vulnerability in URL annotation handling on Windows where cmd.exe metacharacters are not properly escaped. Attackers can execute arbitrary commands under the Ghidra user's privileges by embedding malicious URLs in program comments that victims click...

8.4CVSS5.7AI score0.00503EPSS
Exploits0References2
CVE
CVE
added 2026/06/10 12:39 p.m.59 views

CVE-2026-52750

Ghidra prior to 12.1 on Windows contains a command-injection in URL annotation handling: cmd.exe metacharacters are not properly escaped. This allows an attacker to execute arbitrary commands under the Ghidra user by embedding a malicious URL in a program comment and having a victim click it. Aff...

8.4CVSS5.9AI score0.00503EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.14 views

PT-2026-48410

Name of the Vulnerable Software and Affected Versions Ghidra versions prior to 12.1 Description On Windows, improper escaping of cmd.exe metacharacters in URL annotation handling allows for command injection. This occurs when malicious URLs are embedded in program comments; if a user clicks these...

8.4CVSS5.7AI score0.00503EPSS
Exploits0References6
Rows per page
Query Builder