Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
radare radare2 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-6197
The r_read_* functions in libr/include/r_endian.h in radare2 1.2.1 allow remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted binary file, as demonstrated by the r_read_le32 function.
Radare Radare2 1.2.1
4.3
CVSSv2
CVE-2018-11377
The avr_op_analyze() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
Radare Radare2 2.5.0
4.3
CVSSv2
CVE-2018-11383
The r_strbuf_fini() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (invalid free and application crash) via a crafted ELF file because of an uninitialized variable in the CPSE handler in libr/anal/p/anal_avr.c.
Radare Radare2 2.5.0
4.3
CVSSv2
CVE-2018-11384
The sh_op() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted ELF file.
Radare Radare2 2.5.0
6.8
CVSSv2
CVE-2017-10929
The grub_memmove function in shlr/grub/kern/misc.c in radare2 1.5.0 allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file, possibly related to a read overfl...
Radare Radare2 1.5.0
4.3
CVSSv2
CVE-2017-7274
The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted PE file.
Radare Radare2 1.3.0
4.3
CVSSv2
CVE-2018-11379
The get_debug_info() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted PE file.
Radare Radare2 2.5.0
4.3
CVSSv2
CVE-2018-11380
The parse_import_ptr() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted Mach-O file.
Radare Radare2 2.5.0
4.3
CVSSv2
CVE-2018-11382
The _inst__sts() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
Radare Radare2 2.5.0
6.8
CVSSv2
CVE-2017-6319
The dex_parse_debug_item function in libr/bin/p/bin_dex.c in radare2 1.2.1 allows remote malicious users to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted DEX file.
Radare Radare2 1.2.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »