Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
radare radare2 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2018-11375
The _inst__lds() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
Radare Radare2 2.5.0
4.3
CVSSv2
CVE-2017-9761
The find_eoq function in libr/core/cmd.c in radare2 1.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
Radare Radare2 1.5.0
4.3
CVSSv2
CVE-2017-9762
The cmd_info function in libr/core/cmd_info.c in radare2 1.5.0 allows remote malicious users to cause a denial of service (use-after-free and application crash) via a crafted binary file.
Radare Radare2 1.5.0
4.3
CVSSv2
CVE-2017-7716
The read_u32_leb128 function in libr/util/uleb128.c in radare2 1.3.0 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembly file.
Radare Radare2 1.3.0
4.3
CVSSv2
CVE-2017-6415
The dex_parse_debug_item function in libr/bin/p/bin_dex.c in radare2 1.2.1 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted DEX file.
Radare Radare2 1.2.1
6.8
CVSSv2
CVE-2017-15368
The wasm_dis function in libr/asm/arch/wasm/wasm.c in radare2 2.0.0 allows remote malicious users to cause a denial of service (stack-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted WASM file that triggers an incorrect r_hex_b...
Radare Radare2 2.0.0
6.8
CVSSv2
CVE-2017-15385
The store_versioninfo_gnu_verdef function in libr/bin/format/elf/elf.c in radare2 2.0.0 allows remote malicious users to cause a denial of service (r_read_le16 invalid write and application crash) or possibly have unspecified other impact via a crafted ELF file.
Radare Radare2 2.0.0
6.8
CVSSv2
CVE-2018-12320
There is a use after free in radare2 2.6.0 in r_anal_bb_free() in libr/anal/bb.c via a crafted Java binary file.
Radare Radare2 2.6.0
4.3
CVSSv2
CVE-2018-12322
There is a heap out of bounds read in radare2 2.6.0 in _6502_op() in libr/anal/p/anal_6502.c via a crafted iNES ROM binary file.
Radare Radare2 2.6.0
6.8
CVSSv2
CVE-2017-16357
In radare 2.0.1, a memory corruption vulnerability exists in store_versioninfo_gnu_verdef() and store_versioninfo_gnu_verneed() in libr/bin/format/elf/elf.c, as demonstrated by an invalid free. This error is due to improper sh_size validation when allocating memory.
Radare Radare2 2.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »