Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
radare vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2022-1452
Out-of-bounds Read in r_bin_java_bootstrap_methods_attr_new function in GitHub repository radareorg/radare2 before 5.7.0. The bug causes the program reads data past the end 2f the intented buffer. Typically, this can allow malicious users to read sensitive information from other ...
Radare Radare2
4.3
CVSSv2
CVE-2018-19842
getToken in libr/asm/p/asm_x86_nz.c in radare2 prior to 3.1.0 allows malicious users to cause a denial of service (stack-based buffer over-read) via crafted x86 assembly data, as demonstrated by rasm2.
Radare Radare2
4.3
CVSSv2
CVE-2018-19843
opmov in libr/asm/p/asm_x86_nz.c in radare2 prior to 3.1.0 allows malicious users to cause a denial of service (buffer over-read) via crafted x86 assembly data, as demonstrated by rasm2.
Radare Radare2
4.3
CVSSv2
CVE-2018-20455
In radare2 before 3.1.1, the parseOperand function inside libr/asm/p/asm_x86_nz.c may allow malicious users to cause a denial of service (application crash via a stack-based buffer overflow) by crafting an input file, a related issue to CVE-2018-20456.
Radare Radare2
4.3
CVSSv2
CVE-2018-20456
In radare2 before 3.1.1, the parseOperand function inside libr/asm/p/asm_x86_nz.c may allow malicious users to cause a denial of service (application crash in libr/util/strbuf.c via a stack-based buffer over-read) by crafting an input file, a related issue to CVE-2018-20455.
Radare Radare2
4.3
CVSSv2
CVE-2018-20458
In radare2 before 3.1.1, r_bin_dyldcache_extract in libr/bin/format/mach0/dyldcache.c may allow malicious users to cause a denial-of-service (application crash caused by out-of-bounds read) by crafting an input file.
Radare Radare2
4.3
CVSSv2
CVE-2018-20459
In radare2 up to and including 3.1.3, the armass_assemble function in libr/asm/arch/arm/armass.c allows malicious users to cause a denial-of-service (application crash by out-of-bounds read) by crafting an arm assembly input because a loop uses an incorrect index in armass.c and ...
Radare Radare2
4.3
CVSSv2
CVE-2018-20460
In radare2 before 3.1.2, the parseOperands function in libr/asm/arch/arm/armass64.c allows malicious users to cause a denial-of-service (application crash caused by stack-based buffer overflow) by crafting an input file.
Radare Radare2
4.3
CVSSv2
CVE-2018-20461
In radare2 before 3.1.1, core_anal_bytes in libr/core/cmd_anal.c allows malicious users to cause a denial-of-service (application crash caused by out-of-bounds read) by crafting a binary file.
Radare Radare2
5
CVSSv2
CVE-2021-4021
A vulnerability was found in Radare2 in versions before 5.6.2, 5.6.0, 5.5.4 and 5.5.2. Mapping a huge section filled with zeros of an ELF64 binary for MIPS architecture can lead to uncontrolled resource consumption and DoS.
Radare Radare2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »