CVE ID :CVE-2026-4946 Published : March 29, 2026, 8:16 p.m. | 40 minutes ago Description :Ghidra versions prior to 12.0.3 improperly process annotation directives embedded in automatically extracted binary data, resulting in arbitrary command execution when an analyst interacts with the UI. Specifically, the @execute annotation (which is intended for trusted, user-authored comments) is also parsed in comments generated during auto-analysis (such as CFStrings in Mach-O binaries). This allows a crafted binary to present seemingly benign clickable text which, when clicked, executes attacker-controlled commands on the analyst’s machine. Severity: 8.8 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...