Home

Description

Ghidra 10.2 before 12.1 contains an uncontrolled resource consumption vulnerability in ExportTrie.parseTrie() that lacks cycle detection when traversing Mach-O binary export tries. A crafted Mach-O binary with circular references in the export trie causes unbounded queue growth and exponential string concatenation, triggering OutOfMemoryError that crashes the entire JVM and loses all unsaved work.

PUBLISHED Reserved 2026-05-31 | Published 2026-06-10 | Updated 2026-06-10 | Assigner VulnCheck




MEDIUM: 6.7CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

MEDIUM: 5.5CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Problem types

Loop with Unreachable Exit Condition ('Infinite Loop')

Product status

Default status
unaffected

10.2 (custom) before 12.1
affected

12.1 (custom)
unaffected

Credits

Donghwoo Cho reporter

References

github.com/...ghidra/security/advisories/GHSA-wm33-9f68-3vjg exploit

github.com/...ghidra/security/advisories/GHSA-wm33-9f68-3vjg (GitHub Security Advisory (GHSA-wm33-9f68-3vjg)) vendor-advisory

www.vulncheck.com/...-reference-in-mach-o-export-trie-parser third-party-advisory

cve.org (CVE-2026-49495)

nvd.nist.gov (CVE-2026-49495)

Download JSON