CVE-2023-22671 | NSA Ghidra up to 10.2.2 launch.sh analyzeHeadless command injection (Issue 4869 / EUVD-2023-26800)
A vulnerability identified as critical has been detected in NSA Ghidra up to 10.2.2. This affects the function analyzeHeadless of the file Ghidra/RuntimeScripts/Linux/support/launch.sh. This manipulation causes command injection.
This vulnerability is registered as CVE-2023-22671. The attack requires access to the local network. No exploit is available.
To fix this issue, it is recommended to deploy a patch.