Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
radare2 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2022-28070
A null pointer deference in __core_anal_fcn function in radare2 5.4.2 and 5.4.0.
Radare Radare2 5.4.2
Radare Radare2 5.4.0
7.5
CVSSv3
CVE-2022-28068
A heap buffer overflow in r_sleb128 function in radare2 5.4.2 and 5.4.0.
Radare Radare2 5.4.2
Radare Radare2 5.4.0
7.5
CVSSv3
CVE-2022-28069
A heap buffer overflow in vax_opfunction in radare2 5.4.2 and 5.4.0.
Radare Radare2 5.4.2
Radare Radare2 5.4.0
7.5
CVSSv3
CVE-2022-28071
A use after free in r_reg_get_name_idx function in radare2 5.4.2 and 5.4.0.
Radare Radare2 5.4.2
Radare Radare2 5.4.0
7.5
CVSSv3
CVE-2022-28072
A heap buffer overflow in r_read_le32 function in radare25.4.2 and 5.4.0.
Radare Radare2 5.4.2
Radare Radare2 5.4.0
7.5
CVSSv3
CVE-2022-28073
A use after free in r_reg_set_value function in radare2 5.4.2 and 5.4.0.
Radare Radare2 5.4.2
Radare Radare2 5.4.0
6.1
CVSSv3
CVE-2022-1383
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 before 5.6.8. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow malicious users to read sensitive information from other memory locations or cause a crash.
Radare Radare2
7.1
CVSSv3
CVE-2022-1451
Out-of-bounds Read in r_bin_java_constant_value_attr_new function in GitHub repository radareorg/radare2 before 5.7.0. The bug causes the program reads data past the end 2f the intented buffer. Typically, this can allow malicious users to read sensitive information from other mem...
Radare Radare2
5.5
CVSSv3
CVE-2022-1649
Null pointer dereference in libr/bin/format/mach0/mach0.c in radareorg/radare2 in GitHub repository radareorg/radare2 before 5.7.0. It is likely to be exploitable. For more general description of heap buffer overflow, see [CWE](https://cwe.mitre.org/data/definitions/476.html).
Radare Radare2
5.5
CVSSv3
CVE-2018-20456
In radare2 before 3.1.1, the parseOperand function inside libr/asm/p/asm_x86_nz.c may allow malicious users to cause a denial of service (application crash in libr/util/strbuf.c via a stack-based buffer over-read) by crafting an input file, a related issue to CVE-2018-20455.
Radare Radare2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »