Critical severity9.1NVD Advisory· Published Jul 17, 2019· Updated Jun 17, 2026
CVE-2019-13625
CVE-2019-13625
Description
NSA Ghidra before 9.0.1 allows XXE when a project is opened or restored, or a tool is imported, as demonstrated by a project.prp file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- NSA/Ghidradescription
- Range: <9.0.1
Patches
Vulnerability mechanics
References
3- blog.fxiao.me/ghidra/nvdExploitThird Party Advisory
- github.com/NationalSecurityAgency/ghidra/issues/71nvdExploitThird Party Advisory
- xlab.tencent.com/en/2019/03/18/ghidra-from-xxe-to-rce/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.