PatchSiren cyber security CVE debrief
CVE-2026-52758 nationalsecurityagency CVE debrief
CVE-2026-52758 is a SQL injection vulnerability in Ghidra before 12.1. The vulnerability exists in BSim filter types that concatenate user-supplied values directly into SQL queries without escaping or parameterization. This allows remote attackers to inject arbitrary SQL via the BSim network query protocol to read, modify, or delete data in the PostgreSQL database. The vulnerability has a CVSS score of 8.7 and is considered HIGH severity.
- Vendor
- nationalsecurityagency
- Product
- ghidra
- CVSS
- HIGH 8.7
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-10
- Original CVE updated
- 2026-06-11
- Advisory published
- 2026-06-10
- Advisory updated
- 2026-06-11
Who should care
Users of Ghidra versions prior to 12.1 should be aware of this vulnerability and take steps to mitigate it.
Technical summary
The vulnerability is caused by the lack of escaping or parameterization of user-supplied values in BSim filter types. This allows remote attackers to inject arbitrary SQL code, potentially leading to unauthorized access, modification, or deletion of data in the PostgreSQL database.
Defensive priority
HIGH
Recommended defensive actions
- Upgrade to Ghidra version 12.1 or later.
- Implement proper input validation and parameterization of SQL queries.
- Monitor and restrict access to the BSim network query protocol.
Evidence notes
The vulnerability is confirmed by the vendor and has been analyzed by the National Vulnerability Database (NVD).
Official resources
-
CVE-2026-52758 CVE record
CVE.org
-
CVE-2026-52758 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Vendor Advisory
-
Mitigation or vendor reference
[email protected] - Third Party Advisory
CVE-2026-52758 was published on 2026-06-10T14:16:36.170Z and modified on 2026-06-11T13:58:23.180Z.