Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
radare2 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2022-1382
NULL Pointer Dereference in GitHub repository radareorg/radare2 before 5.6.8. This vulnerability is capable of making the radare2 crash, thus affecting the availability of the system.
Radare Radare2
5.5
CVSSv3
CVE-2022-1444
heap-use-after-free in GitHub repository radareorg/radare2 before 5.7.0. This vulnerability is capable of inducing denial of service.
Radare Radare2
5.5
CVSSv3
CVE-2022-1649
Null pointer dereference in libr/bin/format/mach0/mach0.c in radareorg/radare2 in GitHub repository radareorg/radare2 before 5.7.0. It is likely to be exploitable. For more general description of heap buffer overflow, see [CWE](https://cwe.mitre.org/data/definitions/476.html).
Radare Radare2
5.5
CVSSv3
CVE-2018-19842
getToken in libr/asm/p/asm_x86_nz.c in radare2 prior to 3.1.0 allows malicious users to cause a denial of service (stack-based buffer over-read) via crafted x86 assembly data, as demonstrated by rasm2.
Radare Radare2
5.5
CVSSv3
CVE-2018-19843
opmov in libr/asm/p/asm_x86_nz.c in radare2 prior to 3.1.0 allows malicious users to cause a denial of service (buffer over-read) via crafted x86 assembly data, as demonstrated by rasm2.
Radare Radare2
5.5
CVSSv3
CVE-2018-15834
In radare2 prior to 2.9.0, a heap overflow vulnerability exists in the read_module_referenced_functions function in libr/anal/flirt.c via a crafted flirt signature file.
Radare Radare2
5.5
CVSSv3
CVE-2022-1284
heap-use-after-free in GitHub repository radareorg/radare2 before 5.6.8. This vulnerability is capable of inducing denial of service.
Radare Radare2
9.1
CVSSv3
CVE-2022-1297
Out-of-bounds Read in r_bin_ne_get_entrypoints function in GitHub repository radareorg/radare2 before 5.6.8. This vulnerability may allow malicious users to read sensitive information or cause a crash.
Radare Radare2
5.5
CVSSv3
CVE-2018-20455
In radare2 before 3.1.1, the parseOperand function inside libr/asm/p/asm_x86_nz.c may allow malicious users to cause a denial of service (application crash via a stack-based buffer overflow) by crafting an input file, a related issue to CVE-2018-20456.
Radare Radare2
5.5
CVSSv3
CVE-2018-20457
In radare2 up to and including 3.1.3, the assemble function inside libr/asm/p/asm_arm_cs.c allows malicious users to cause a denial-of-service (application crash via an r_num_calc out-of-bounds read) by crafting an arm assembly input because a loop uses an incorrect index in arma...
Radare Radare2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
CVE-2006-4304
CVE-2023-26603
CVE-2024-28327
CVE-2023-50363
CVE-2024-21905
template injection
CVE-2024-3400
cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »