Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
radare radare2 vulnerabilities and exploits
(subscribe to this query)
320
VMScore
CVE-2022-1714
Out-of-bounds Read in GitHub repository radareorg/radare2 before 5.7.0. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow malicious users to read sensitive information from other memory locations or cause a crash.
Radare Radare2
605
VMScore
CVE-2022-1809
Access of Uninitialized Pointer in GitHub repository radareorg/radare2 before 5.7.0.
Radare Radare2
570
VMScore
CVE-2022-1899
Out-of-bounds Read in GitHub repository radareorg/radare2 before 5.7.0.
Radare Radare2
NA
CVE-2023-46569
An out-of-bounds read in radare2 v.5.8.9 and before exists in the print_insn32_fpu function of libr/arch/p/nds32/nds32-dis.h.
Radare Radare2
NA
CVE-2023-46570
An out-of-bounds read in radare2 v.5.8.9 and before exists in the print_insn32 function of libr/arch/p/nds32/nds32-dis.h.
Radare Radare2
383
VMScore
CVE-2022-1649
Null pointer dereference in libr/bin/format/mach0/mach0.c in radareorg/radare2 in GitHub repository radareorg/radare2 before 5.7.0. It is likely to be exploitable. For more general description of heap buffer overflow, see [CWE](https://cwe.mitre.org/data/definitions/476.html).
Radare Radare2
605
VMScore
CVE-2019-19590
In radare2 up to and including 4.0, there is an integer overflow for the variable new_token_size in the function r_asm_massemble at libr/asm/asm.c. This integer overflow will result in a Use-After-Free for the buffer tokens, which can be filled with arbitrary malicious data after...
Radare Radare2
383
VMScore
CVE-2018-20456
In radare2 before 3.1.1, the parseOperand function inside libr/asm/p/asm_x86_nz.c may allow malicious users to cause a denial of service (application crash in libr/util/strbuf.c via a stack-based buffer over-read) by crafting an input file, a related issue to CVE-2018-20455.
Radare Radare2
383
VMScore
CVE-2021-44974
radareorg radare2 version 5.5.2 is vulnerable to NULL Pointer Dereference via libr/bin/p/bin_symbols.c binary symbol parser.
Radare Radare2
1 Github repository
NA
CVE-2022-4398
Integer Overflow or Wraparound in GitHub repository radareorg/radare2 before 5.8.0.
Radare Radare2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »