CVE-2021-32494
- EPSS 0.84%
- Veröffentlicht 07.07.2023 19:15:09
- Zuletzt bearbeitet 21.11.2024 06:07:08
Radare2 has a division by zero vulnerability in Mach-O parser's rebase_buffer function. This allow attackers to create malicious inputs that can cause denial of service.
CVE-2021-32495
- EPSS 0.76%
- Veröffentlicht 07.07.2023 19:15:09
- Zuletzt bearbeitet 21.11.2024 06:07:08
Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow attackers to cause denial of service.
CVE-2023-1605
- EPSS 0.99%
- Veröffentlicht 23.03.2023 19:15:12
- Zuletzt bearbeitet 21.11.2024 07:39:31
Denial of Service in GitHub repository radareorg/radare2 prior to 5.8.6.
CVE-2023-27114
- EPSS 0.3%
- Veröffentlicht 10.03.2023 02:15:58
- Zuletzt bearbeitet 28.02.2025 17:15:14
radare2 v5.8.3 was discovered to contain a segmentation fault via the component wasm_dis at p/wasm/wasm.c.
CVE-2023-0302
- EPSS 0.37%
- Veröffentlicht 15.01.2023 01:15:15
- Zuletzt bearbeitet 21.11.2024 07:36:55
Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository radareorg/radare2 prior to 5.8.2.
CVE-2022-4843
- EPSS 0.7%
- Veröffentlicht 29.12.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 07:36:03
NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.8.2.
CVE-2022-4398
- EPSS 0.33%
- Veröffentlicht 10.12.2022 20:15:10
- Zuletzt bearbeitet 21.11.2024 07:35:11
Integer Overflow or Wraparound in GitHub repository radareorg/radare2 prior to 5.8.0.
CVE-2020-27793
- EPSS 0.92%
- Veröffentlicht 19.08.2022 23:15:08
- Zuletzt bearbeitet 21.11.2024 05:21:50
An off-by-one overflow flaw was found in radare2 due to mismatched array length in core_java.c. This could allow an attacker to cause a crash, and perform a denail of service attack.
CVE-2020-27794
- EPSS 0.91%
- Veröffentlicht 19.08.2022 23:15:08
- Zuletzt bearbeitet 21.11.2024 05:21:50
A double free issue was discovered in radare2 in cmd_info.c:cmd_info(). Successful exploitation could lead to modification of unexpected memory locations and potentially causing a crash.
CVE-2020-27795
- EPSS 1.17%
- Veröffentlicht 19.08.2022 23:15:08
- Zuletzt bearbeitet 21.11.2024 05:21:50
A segmentation fault was discovered in radare2 with adf command. In libr/core/cmd_anal.c, when command "adf" has no or wrong argument, anal_fcn_data (core, input + 1) --> RAnalFunction *fcn = r_anal_get_fcn_in (core->anal, core->offset, -1); returns ...