Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
radare2 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2022-1809
Access of Uninitialized Pointer in GitHub repository radareorg/radare2 before 5.7.0.
Radare Radare2
4.3
CVSSv2
CVE-2018-15834
In radare2 prior to 2.9.0, a heap overflow vulnerability exists in the read_module_referenced_functions function in libr/anal/flirt.c via a crafted flirt signature file.
Radare Radare2
5
CVSSv2
CVE-2019-12829
radare2 up to and including 3.5.1 mishandles the RParse API, which allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact, as demonstrated by newstr buffer overflows during replace operations. This affects libr/asm...
Radare Radare2
6.4
CVSSv2
CVE-2022-1899
Out-of-bounds Read in GitHub repository radareorg/radare2 before 5.7.0.
Radare Radare2
NA
CVE-2023-1605
Denial of Service in GitHub repository radareorg/radare2 before 5.8.6.
Radare Radare2
NA
CVE-2022-4843
NULL Pointer Dereference in GitHub repository radareorg/radare2 before 5.8.2.
Radare Radare2
4.3
CVSSv2
CVE-2019-12865
In radare2 up to and including 3.5.1, cmd_mount in libr/core/cmd_mount.c has a double free for the ms command.
Radare Radare2
4.3
CVSSv2
CVE-2017-6415
The dex_parse_debug_item function in libr/bin/p/bin_dex.c in radare2 1.2.1 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted DEX file.
Radare Radare2 1.2.1
6.8
CVSSv2
CVE-2017-10929
The grub_memmove function in shlr/grub/kern/misc.c in radare2 1.5.0 allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, possibly related to a read overfl...
Radare Radare2 1.5.0
4.3
CVSSv2
CVE-2017-7946
The get_relocs_64 function in libr/bin/format/mach0/mach0.c in radare2 1.3.0 allows remote malicious users to cause a denial of service (use-after-free and application crash) via a crafted Mach0 file.
Radare Radare2 1.3.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »