Low severity2.9NVD Advisory· Published Jun 10, 2026

CVE-2024-58350

Description

Ghidra before 11.2 contains a use after free vulnerability in the Sleigh backend caused by undefined static initialization order of the SleighArchitecture::translators and XmlArchitectureCapability singletons. Attackers can trigger an infinite loop or denial of service during shutdown by exploiting the unsafe destruction order that causes iteration over deallocated memory.

Affected products

Nationalsecurityagency/Ghidrallm-fuzzy
Range: <11.2

Patches

No patches discovered yet.

Vulnerability mechanics

No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.

References

github.com/NationalSecurityAgency/ghidra/security/advisories/GHSA-4g43-2f29-xvp4nvd
www.vulncheck.com/advisories/ghidra-use-after-free-in-sleigh-backend-via-static-initialization-ordernvd

News mentions

National Security Agency's Ghidra: 15 Vulnerabilities Disclosed on June 10, 2026
Vypr Intelligence · Jun 10, 2026

cvss	0.189
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000