Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
radare2 vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2017-9949
The grub_memmove function in shlr/grub/kern/misc.c in radare2 1.5.0 allows remote malicious users to cause a denial of service (stack-based buffer underflow and application crash) or possibly have unspecified other impact via a crafted binary file, possibly related to a buffer un...
Radare Radare2 1.5.0
9.1
CVSSv3
CVE-2021-32495
Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow malicious users to cause denial of service.
Radare Radare2 5.3.0
7.8
CVSSv3
CVE-2017-6194
The relocs function in libr/bin/p/bin_bflt.c in radare2 1.2.1 allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted binary file.
Radare Radare2 1.2.1
5.5
CVSSv3
CVE-2017-6387
The dex_loadcode function in libr/bin/p/bin_dex.c in radare2 1.2.1 allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a crafted DEX file.
Radare Radare2 1.2.1
7.8
CVSSv3
CVE-2017-6448
The dalvik_disassemble function in libr/asm/p/asm_dalvik.c in radare2 1.2.1 allows remote malicious users to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted DEX file.
Radare Radare2 1.2.1
7.8
CVSSv3
CVE-2018-12320
There is a use after free in radare2 2.6.0 in r_anal_bb_free() in libr/anal/bb.c via a crafted Java binary file.
Radare Radare2 2.6.0
5.5
CVSSv3
CVE-2017-7716
The read_u32_leb128 function in libr/util/uleb128.c in radare2 1.3.0 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembly file.
Radare Radare2 1.3.0
5.5
CVSSv3
CVE-2017-7854
The consume_init_expr function in wasm.c in radare2 1.3.0 allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembly file.
Radare Radare2 1.3.0
5.5
CVSSv3
CVE-2018-11375
The _inst__lds() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
Radare Radare2 2.5.0
5.5
CVSSv3
CVE-2018-11377
The avr_op_analyze() function in radare2 2.5.0 allows remote malicious users to cause a denial of service (heap-based out-of-bounds read and application crash) via a crafted binary file.
Radare Radare2 2.5.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »