CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-15368

The wasm_dis function in libr/asm/arch/wasm/wasm.c in radare2 2.0.0 allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted WASM file that triggers an incorrect r_hex_bin2str call.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 46.7%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

https://github.com/radare/radare2/commit/52b1526443c1f433087928291d1c3d37a5600515
https://github.com/radare/radare2/issues/8673
https://github.com/radare/radare2/commit/52b1526443c1f433087928291d1c3d37a5600515
https://github.com/radare/radare2/issues/8673

Products affected by CVE-2017-15368

Radare » Radare2 » Version: 2.0.0

cpe:2.3:a:radare:radare2:2.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15368

Products

Pricing

Contact Us