{"document":{"category":"csaf_vex","csaf_version":"2.0","title":"CVE-2026-52758: Ghidra < 12.1 - SQL Injection via Unescaped Filter Values in BSim Search","publisher":{"category":"vendor","name":"HarborGuard Database","namespace":"https://database.harborguard.co"},"tracking":{"id":"CVE-2026-52758","status":"final","version":"1","initial_release_date":"2026-06-10T12:42:30.293Z","current_release_date":"2026-06-10T13:41:02.636Z","revision_history":[{"date":"2026-06-10T12:42:30.293Z","number":"1","summary":"Initial machine-readable export from HarborGuard."}]},"distribution":{"tlp":{"label":"WHITE"},"text":"Public CVE data; freely redistributable."},"notes":[{"category":"description","text":"Ghidra before 12.1 contains a SQL injection vulnerability in BSim filter types that concatenate user-supplied values directly into SQL queries without escaping or parameterization. Remote attackers can inject arbitrary SQL via the BSim network query protocol to read, modify, or delete data in the PostgreSQL database.","title":"CVE description"}],"references":[{"category":"self","summary":"CVE-2026-52758 on HarborGuard Database","url":"https://database.harborguard.co/cve/CVE-2026-52758"},{"category":"external","summary":"CVE Record","url":"https://www.cve.org/CVERecord?id=CVE-2026-52758"},{"category":"external","summary":"GitHub Security Advisory (GHSA-8r4f-65cr-fwxm)","url":"https://github.com/NationalSecurityAgency/ghidra/security/advisories/GHSA-8r4f-65cr-fwxm"},{"category":"external","summary":"vulncheck.com","url":"https://www.vulncheck.com/advisories/ghidra-sql-injection-via-unescaped-filter-values-in-bsim-search"}]},"product_tree":{"branches":[{"category":"vendor","name":"nationalsecurityagency","branches":[{"category":"product_name","name":"ghidra","branches":[{"category":"product_version_range","name":">=11.0 <12.1","product":{"name":"nationalsecurityagency ghidra >=11.0 <12.1","product_id":"CSAFPID-1","product_identification_helper":{"cpe":"cpe:2.3:a:nationalsecurityagency:ghidra:*:*:*:*:*:*:*:*"}}},{"category":"product_version","name":"12.1","product":{"name":"nationalsecurityagency ghidra 12.1","product_id":"CSAFPID-2","product_identification_helper":{"cpe":"cpe:2.3:a:nationalsecurityagency:ghidra:*:*:*:*:*:*:*:*"}}}]}]}]},"vulnerabilities":[{"cve":"CVE-2026-52758","title":"Ghidra < 12.1 - SQL Injection via Unescaped Filter Values in BSim Search","notes":[{"category":"description","text":"Ghidra before 12.1 contains a SQL injection vulnerability in BSim filter types that concatenate user-supplied values directly into SQL queries without escaping or parameterization. Remote attackers can inject arbitrary SQL via the BSim network query protocol to read, modify, or delete data in the PostgreSQL database.","title":"CVE description"}],"product_status":{"known_affected":["CSAFPID-1"],"fixed":["CSAFPID-2"]},"scores":[{"cvss_v4":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N","baseScore":8.7,"baseSeverity":"HIGH"},"products":["CSAFPID-1"]}],"remediations":[{"category":"vendor_fix","details":"Update to a fixed version: 12.1.","product_ids":["CSAFPID-1"]}]}]}