cvedb.io
CVE-2026-52753
MEDIUM · CVSS 5.5
EPSS exploitation probability: 0%
Published 2026-06-10T14:16:35.470 · Last modified 2026-06-17T10:57:52.573

Summary

Ghidra before 12.0.3 contains an out-of-memory vulnerability in the rust_demangle function that allocates unbounded output buffers without size limits. Attackers can craft malicious Rust symbol names in binaries to trigger exponential memory allocation, causing process crashes during binary analysis.

Affected products

nsa — ghidra

Does this affect you?

Add your gear to cvedb and we'll alert you only when nsa ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.