Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
radare2 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2018-14016
The r_bin_mdmp_init_directory_entry function in mdmp.c in radare2 2.7.0 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Mini Crash Dump file.
Radare Radare2 2.7.0
383
VMScore
CVE-2017-9761
The find_eoq function in libr/core/cmd.c in radare2 1.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
Radare Radare2 1.5.0
383
VMScore
CVE-2017-9762
The cmd_info function in libr/core/cmd_info.c in radare2 1.5.0 allows remote malicious users to cause a denial of service (use-after-free and application crash) via a crafted binary file.
Radare Radare2 1.5.0
NA
CVE-2022-34520
Radare2 v5.7.2 exists to contain a NULL pointer dereference via the function r_bin_file_xtr_load_buffer at bin/bfile.c. This vulnerability allows malicious users to cause a Denial of Service (DOS) via a crafted binary file.
Radare Radare2 5.7.2
NA
CVE-2021-32494
Radare2 has a division by zero vulnerability in Mach-O parser's rebase_buffer function. This allow malicious users to create malicious inputs that can cause denial of service.
Radare Radare2 5.3.0
383
VMScore
CVE-2017-6387
The dex_loadcode function in libr/bin/p/bin_dex.c in radare2 1.2.1 allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a crafted DEX file.
Radare Radare2 1.2.1
445
VMScore
CVE-2017-9763
The grub_ext2_read_block function in fs/ext2.c in GNU GRUB prior to 2013-11-12, as used in shlr/grub/fs/ext2.c in radare2 1.5.0, allows remote malicious users to cause a denial of service (excessive stack use and application crash) via a crafted binary file, related to use of a v...
Radare Radare2 1.5.0
383
VMScore
CVE-2018-14015
The sdb_set_internal function in sdb.c in radare2 2.7.0 allows remote malicious users to cause a denial of service (invalid read and application crash) via a crafted ELF file because of missing input validation in r_bin_dwarf_parse_comp_unit in libr/bin/dwarf.c.
Radare Radare2 2.7.0
383
VMScore
CVE-2018-14017
The r_bin_java_annotation_new function in shlr/java/class.c in radare2 2.7.0 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted .class file because of missing input validation in r_bin_java_line_number_tabl...
Radare Radare2 2.7.0
383
VMScore
CVE-2018-10186
In radare2 2.5.0, there is a heap-based buffer over-read in the r_hex_bin2str function (libr/util/hex.c). Remote attackers could leverage this vulnerability to cause a denial of service via a crafted DEX file. This issue is different from CVE-2017-15368.
Radare Radare2 2.5.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »