Prasanthsundararajan69

**Name of the Vulnerable Software and Affected Versions** Ghidra versions prior to 12.0.2 **Description** The extension installer fails to validate ZIP entry names during extraction. This allows attackers to use traversal sequences, such as `../` in filenames, to write arbitrary files outside the intended directory, which can lead to code execution. **Recommendations** Update to version 12.0.2.

**Name of the Vulnerable Software and Affected Versions** Ghidra versions prior to 12.0.4 **Description** A path traversal issue exists in the theme import functionality. This allows attackers to write files outside the intended theme directory by using malicious theme ZIP files containing traversal sequences in filenames. This can lead to the modification of sensitive files, such as `.bashrc` or `.ssh/authorized keys`, or the execution of arbitrary code. **Recommendations** Update to version 12.0.4 or later.

**Name of the Vulnerable Software and Affected Versions** Step CA versions 0.30.0-rc6 and below **Description** Step CA is an online certificate authority designed for secure, automated certificate management. A flaw exists where the software does not adequately protect against unauthenticated certificate issuance through the SCEP UpdateReq (MessageType=18). This allows attackers to potentially obtain valid certificates for any domain without providing credentials. The `SCEP UpdateReq` bypasses all authentication checks within Step CA. **Recommendations** Versions prior to 0.30.0 should be upgraded to version 0.30.0.