Arbitrary Code Execution Vulnerability in NSA Ghidra Software
CVE-2019-16941

9.8CRITICAL

Key Information:

Vendor

Nsa

Status
Ghidra
Vendor
CVE Published:
28 September 2019

Badges

πŸ‘Ύ Exploit Exists🟑 Public PoC🟣 EPSS 22%

What is CVE-2019-16941?

In NSA Ghidra versions up to 9.0.4, a vulnerability exists when experimental mode is enabled that allows an attacker to execute arbitrary code through the Read XML Files feature of the Bit Patterns Explorer. This can occur if a modified XML document, initially created by the DumpFunctionPatternInfoScript, is used. The attacker can exploit this vulnerability by embedding malicious code in the XML. Specifically, this issue arises in the FileBitPatternInfoReader.java file, where certain code execution functions can be triggered inadvertently.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2019-16941
Created by purpleracc00n

References

https://github.com/NationalSecurityAgency/ghidra/issues/1090
x_refsource_MISC
https://github.com/NationalSecurityAgency/ghidra/blob/79d...
x_refsource_MISC
https://github.com/purpleracc00n/CVE-2019-16941
x_refsource_MISC

EPSS Score

22% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • 🟑

    Public PoC available

  • πŸ‘Ύ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

JSON
.