nationalsecurityagency Summary
Latest vulnerabilities published by nationalsecurityagency
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Ghidra < 12.1 - SQL Injection via Unescaped Filter Values in BSim Search
CVE-2026-52758Nationalsecuritya...Ghidra8.7HIGHGhidra < 12.1 - Heap-use-after-free in HighVariable::merge() during decompilation
CVE-2026-52757Nationalsecuritya...Ghidra4.6MEDIUMGhidra < 12.2 - Unauthenticated Path Traversal in Debugger ISF Server
CVE-2026-52756Nationalsecuritya...Ghidra6.3MEDIUMGhidra < 12.0.4 - Path Traversal via Zip Slip in Theme Import
CVE-2026-52755Nationalsecuritya...Ghidra8.4HIGHGhidra < 12.1 - Authentication Bypass via Null Signature in PKIAuthenticationModule
CVE-2026-52754Nationalsecuritya...Ghidra8.7HIGHGhidra < 12.0.3 - Out-of-Memory in Rust Symbol Demangler via Malformed Symbol
CVE-2026-52753Nationalsecuritya...Ghidra6.7MEDIUMGhidra < 12.0.2 - Path Traversal in Extension Installer via ZIP Entry Names
CVE-2026-52752Nationalsecuritya...Ghidra8.4HIGHGhidra < 12.1 - Remote Code Execution via Unfiltered RMI Deserialization in Shared Project Connection
CVE-2026-52751Nationalsecuritya...Ghidra8.6HIGHGhidra < 12.1- Command Injection via URL Annotation Click
CVE-2026-52750Nationalsecuritya...Ghidra8.4HIGHGhidra 11.0 < 12.1 - SQL Injection in PostgreSQL Password Change via Unescaped Username
CVE-2026-49498Nationalsecuritya...Ghidra8.7HIGHGhidra < 12.1 - Path Traversal via .gnu_debuglink in DWARF External Debug File Resolution
CVE-2026-49497Nationalsecuritya...Ghidra4.6MEDIUMGhidra < 12.1 - Heap-Use-After-Free in SleighBuilder::generatePointerAdd via Vector Reallocation
CVE-2026-49496Nationalsecuritya...Ghidra6.9MEDIUMGhidra 10.2 < 12.1 - Denial of Service via Circular Reference in Mach-O Export Trie Parser
CVE-2026-49495Nationalsecuritya...Ghidra6.7MEDIUMGhidra < 11.2 - Use After Free in Sleigh Backend via Static Initialization Order
CVE-2024-58350Nationalsecuritya...Ghidra2.1LOWOS Command Injection Vulnerability in Emissary Workflow Engine
CVE-2026-35582Nationalsecuritya...Emissary8.8HIGHPath Traversal Vulnerability in Emissary Data Workflow Engine
CVE-2026-35583Nationalsecuritya...Emissary5.3MEDIUMCommand Injection Issue in Emissary Workflow Engine by National Security Agency
CVE-2026-35581Nationalsecuritya...Emissary7.2HIGHShell Injection Vulnerability in Emissary Workflow Engine by National Security Agency
CVE-2026-35580Nationalsecuritya...Emissary9.1CRITICALStored Cross-Site Scripting Exposure in Emissary by National Security Agency
CVE-2026-35571Nationalsecuritya...Emissary4.8MEDIUMVulnerability in Emissary Workflow Engine Allows Use of Weak Cryptographic Algorithms
CVE-2025-27508Nationalsecuritya...Emissary7.5HIGHSkillTree vulnerable to CSRF attack
CVE-2024-39326Nationalsecuritya...Skills-service4.4MEDIUMServer-Side Request Forgery (SSRF) in emissary:emissary
CVE-2021-32639Nationalsecuritya...Emissary7.2HIGHPost-authentication Remote Code Execution (RCE) in emissary:emissary
CVE-2021-32647Nationalsecuritya...Emissary8HIGHDeserialization of Untrusted Data in Emissary
CVE-2021-32634Nationalsecuritya...Emissary7.2HIGH