Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
radare vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2022-1296
Out-of-bounds read in `r_bin_ne_get_relocs` function in GitHub repository radareorg/radare2 before 5.6.8. This vulnerability may allow malicious users to read sensitive information or cause a crash.
Radare Radare2
9.1
CVSSv3
CVE-2022-1297
Out-of-bounds Read in r_bin_ne_get_entrypoints function in GitHub repository radareorg/radare2 before 5.6.8. This vulnerability may allow malicious users to read sensitive information or cause a crash.
Radare Radare2
6.1
CVSSv3
CVE-2022-1383
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 before 5.6.8. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow malicious users to read sensitive information from other memory locations or cause a crash.
Radare Radare2
7.1
CVSSv3
CVE-2022-1437
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 before 5.7.0. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow malicious users to read sensitive information from other memory locations or cause a crash.
Radare Radare2
5.5
CVSSv3
CVE-2022-1444
heap-use-after-free in GitHub repository radareorg/radare2 before 5.7.0. This vulnerability is capable of inducing denial of service.
Radare Radare2
5.5
CVSSv3
CVE-2018-20456
In radare2 before 3.1.1, the parseOperand function inside libr/asm/p/asm_x86_nz.c may allow malicious users to cause a denial of service (application crash in libr/util/strbuf.c via a stack-based buffer over-read) by crafting an input file, a related issue to CVE-2018-20455.
Radare Radare2
7.5
CVSSv3
CVE-2020-27793
An off-by-one overflow flaw was found in radare2 due to mismatched array length in core_java.c. This could allow an malicious user to cause a crash, and perform a denail of service attack.
Radare Radare2
9.1
CVSSv3
CVE-2020-27794
A double free issue exists in radare2 in cmd_info.c:cmd_info(). Successful exploitation could lead to modification of unexpected memory locations and potentially causing a crash.
Radare Radare2
7.5
CVSSv3
CVE-2020-27795
A segmentation fault exists in radare2 with adf command. In libr/core/cmd_anal.c, when command "adf" has no or wrong argument, anal_fcn_data (core, input + 1) --> RAnalFunction *fcn = r_anal_get_fcn_in (core->anal, core->offset, -1); returns null pointer for fc...
Radare Radare2
7.8
CVSSv3
CVE-2019-16718
In radare2 prior to 3.9.0, a command injection vulnerability exists in bin_symbols() in libr/core/cbin.c. By using a crafted executable file, it's possible to execute arbitrary shell commands with the permissions of the victim. This vulnerability is due to an insufficient fi...
Radare Radare2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »