Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
radare2 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2018-20460
In radare2 before 3.1.2, the parseOperands function in libr/asm/arch/arm/armass64.c allows malicious users to cause a denial-of-service (application crash caused by stack-based buffer overflow) by crafting an input file.
Radare Radare2
4.3
CVSSv2
CVE-2018-20461
In radare2 before 3.1.1, core_anal_bytes in libr/core/cmd_anal.c allows malicious users to cause a denial-of-service (application crash caused by out-of-bounds read) by crafting a binary file.
Radare Radare2
6.8
CVSSv2
CVE-2019-12790
In radare2 up to and including 3.5.1, there is a heap-based buffer over-read in the r_egg_lang_parsechar function of egg_lang.c. This allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact because of missing length...
Radare Radare2
7.5
CVSSv2
CVE-2022-0139
Use After Free in GitHub repository radareorg/radare2 before 5.6.0.
Radare Radare2
6.4
CVSSv2
CVE-2022-1899
Out-of-bounds Read in GitHub repository radareorg/radare2 before 5.7.0.
Radare Radare2
NA
CVE-2023-0302
Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository radareorg/radare2 before 5.8.2.
Radare Radare2
4.3
CVSSv2
CVE-2019-12865
In radare2 up to and including 3.5.1, cmd_mount in libr/core/cmd_mount.c has a double free for the ms command.
Radare Radare2
NA
CVE-2022-4843
NULL Pointer Dereference in GitHub repository radareorg/radare2 before 5.8.2.
Radare Radare2
NA
CVE-2022-4398
Integer Overflow or Wraparound in GitHub repository radareorg/radare2 before 5.8.0.
Radare Radare2
6.8
CVSSv2
CVE-2019-19590
In radare2 up to and including 4.0, there is an integer overflow for the variable new_token_size in the function r_asm_massemble at libr/asm/asm.c. This integer overflow will result in a Use-After-Free for the buffer tokens, which can be filled with arbitrary malicious data after...
Radare Radare2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »