CVE-2026-49497

CVE Database · CVE-2026-49497

CVE-2026-49497

· LOWAnalyzed

CVSS v3.1

3.3

CVSS v4.0

4.6

EPSS

0.14%

Published

Jun 10, 2026

Modified

Jun 11, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Ghidra before 12.1 contains a path traversal vulnerability in SameDirDebugInfoProvider that fails to validate filenames from ELF binary .gnu_debuglink sections before constructing file paths. Attackers can craft malicious ELF binaries with traversal sequences to probe filesystem existence and leak CRC32 hashes of arbitrary files during automatic DWARF analysis.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Weaknesses (CWE)

CWE-22

Affected Products (1)

nsa · ghidra (up to 12.1)vulnerable

References (2)

https://github.com/NationalSecurityAgency/ghidra/security/advisories/GHSA-57g6-7qw2-p5hx

ExploitVendor Advisory

https://www.vulncheck.com/advisories/ghidra-path-traversal-via-gnu-debuglink-in-dwarf-external-debug-file-resolution

Third Party Advisory

KEV Catalog EPSS Scores Vendors All CVEs