Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rizin rizin vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2022-36039
Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to out-of-bounds write when parsing DEX files. A user opening a malicious DEX file could be affected by this vulnerability, allowing an malicious user to execute c...
Rizin Rizin
7.8
CVSSv3
CVE-2022-36040
Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to an out-of-bounds write when getting data from PYC(python) files. A user opening a malicious PYC file could be affected by this vulnerability, allowing an malici...
Rizin Rizin
7.8
CVSSv3
CVE-2022-36041
Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to an out-of-bounds write when parsing Mach-O files. A user opening a malicious Mach-O file could be affected by this vulnerability, allowing an malicious user to ...
Rizin Rizin
7.8
CVSSv3
CVE-2022-36042
Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to an out-of-bounds write when getting data from dyld cache files. A user opening a malicious dyld cache file could be affected by this vulnerability, allowing an ...
Rizin Rizin
7.8
CVSSv3
CVE-2022-36044
Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to an out-of-bounds write when getting data from Luac files. A user opening a malicious Luac file could be affected by this vulnerability, allowing an malicious us...
Rizin Rizin
7.8
CVSSv3
CVE-2023-27590
Rizin is a UNIX-like reverse engineering framework and command-line toolset. In version 0.5.1 and prior, converting a GDB registers profile file into a Rizin register profile can result in a stack-based buffer overflow when the `name`, `type`, or `groups` fields have longer value...
Rizin Rizin
7.8
CVSSv3
CVE-2023-40022
Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.6.0 and prior are vulnerable to integer overflow in `consume_count` of `src/gnu_v2/cplus-dem.c`. The overflow check is valid logic but, is missing the modulus if the block once compiled. The c...
Rizin Rizin
5.5
CVSSv3
CVE-2022-34612
Rizin v0.4.0 and below exists to contain an integer overflow via the function get_long_object(). This vulnerability allows malicious users to cause a Denial of Service (DoS) via a crafted binary.
Rizin Rizin
5.5
CVSSv3
CVE-2023-30226
An issue exists in function get_gnu_verneed in rizinorg Rizin before 0.5.0 verneed_entry allows malicious users to cause a denial of service via crafted elf file.
Rizin Rizin
1 Github repository
7.8
CVSSv3
CVE-2022-36043
Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to a double free in bobj.c:rz_bin_reloc_storage_free() when freeing relocations generated from qnx binary plugin. A user opening a malicious qnx binary could be af...
Rizin Rizin
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »