← back
CVE-2019-13623

CVE-2019-13623

23Vexday Risk Score

No sign of exploitation. It has a public proof of concept.

ssvc Attendepss 5.0%
from disclosure to weapon26 days
Published on NVDJul 17
1st PoC+26d
exploitation probability
5.0%top 9% of all CVEs
observed exploitation
nono source reports it
2 public exploit(s)
In NSA Ghidra before 9.1, path traversal can occur in RestoreTask.java (from the package ghidra.app.plugin.core.archive) via an archive with an executable file that has an initial ../ in its filename. This allows attackers to overwrite arbitrary files in scenarios where an intermediate analysis result is archived for sharing with other persons. To achieve arbitrary code execution, one approach is to overwrite some critical Ghidra modules, e.g., the decompile module.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.