Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
radare radare2 2.5.0 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2018-10186
In radare2 2.5.0, there is a heap-based buffer over-read in the r_hex_bin2str function (libr/util/hex.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted DEX file. This issue is different from CVE-2017-15368.
Radare Radare2 2.5.0
383
VMScore
CVE-2018-10187
In radare2 2.5.0, there is a heap-based buffer over-read in the dalvik_op function (libr/anal/p/anal_dalvik.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted DEX file. Note that this issue is different from CVE-2018-8809, which was ...
Radare Radare2 2.5.0
383
VMScore
CVE-2018-11375
The _inst__lds() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
Radare Radare2 2.5.0
383
VMScore
CVE-2018-11377
The avr_op_analyze() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
Radare Radare2 2.5.0
605
VMScore
CVE-2018-11378
The wasm_dis() function in libr/asm/arch/wasm/wasm.c in or possibly have unspecified other impact via a crafted WASM file.
Radare Radare2 2.5.0
383
VMScore
CVE-2018-11379
The get_debug_info() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted PE file.
Radare Radare2 2.5.0
383
VMScore
CVE-2018-11381
The string_scan_range() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
Radare Radare2 2.5.0
383
VMScore
CVE-2018-11382
The _inst__sts() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
Radare Radare2 2.5.0
383
VMScore
CVE-2018-11383
The r_strbuf_fini() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (invalid free and application crash) via a crafted ELF file because of an uninitialized variable in the CPSE handler in libr/anal/p/anal_avr.c.
Radare Radare2 2.5.0
383
VMScore
CVE-2018-11384
The sh_op() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted ELF file.
Radare Radare2 2.5.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »