CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

CVE-2026-52756

Ghidra before 12.2 contains an unauthenticated path traversal vulnerability in the IsfServer that accepts TCP connections and passes client-supplied namespace strings directly to filesystem operations without validation. Remote attackers can connect to port 54321 and send crafted protobuf message...

6.5CVSS5.6AI score0.00384EPSS

Exploits1References1

NVD•added 2026/06/10 2:16 p.m.•9 views

CVE-2026-52756

6.5CVSS0.00384EPSS

Exploits1References2

Cvelist•added 2026/06/10 12:41 p.m.•31 views

CVE-2026-52756 Ghidra < 12.2 - Unauthenticated Path Traversal in Debugger ISF Server

6.3CVSS0.00384EPSS

Exploits1References2

Vulnrichment•added 2026/06/10 12:41 p.m.•5 views

CVE-2026-52756 Ghidra < 12.2 - Unauthenticated Path Traversal in Debugger ISF Server

6.3CVSS5.6AI score0.00384EPSS

Exploits1References2

EUVD•added 2026/06/10 12:41 p.m.•7 views

EUVD-2026-36015

6.3CVSS5.6AI score0.00384EPSS

Exploits1References2

Positive Technologies•added 2026/06/10 12:0 a.m.•9 views

PT-2026-48416

Name of the Vulnerable Software and Affected Versions Ghidra versions prior to 12.2 Description The IsfServer accepts TCP connections and passes client-supplied namespace strings directly to filesystem operations without validation, leading to an unauthenticated path traversal. Remote attackers c...

6.5CVSS5.4AI score0.00384EPSS

Exploits1References6

CNNVD•added 2026/06/10 12:0 a.m.•6 views

NSA Ghidra 路径遍历漏洞

NSA Ghidra is an open-source reverse-engineering tool developed by the National Security Agency National Security Agency of the United States. Prior to version 12.2 of NSA Ghidra, there was a path traversal vulnerability. This vulnerability stemmed from IsfServer not verifying the namespace strin...

6.5CVSS5.4AI score0.00384EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by