Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2018-14015

The sdb_set_internal function in sdb.c in radare2 2.7.0 allows remote attackers to cause a denial of service (invalid read and application crash) via a crafted ELF file because of missing input validation in r_bin_dwarf_parse_comp_unit in libr/bin/dwarf.c.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.4%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 4.3
Products affected by CVE-2018-14015
  • Radare » Radare2 » Version: 2.0.0
    cpe:2.3:a:radare:radare2:2.0.0
  • Radare » Radare2 » Version: 2.0.1
    cpe:2.3:a:radare:radare2:2.0.1
  • Radare » Radare2 » Version: 2.1.0
    cpe:2.3:a:radare:radare2:2.1.0
  • Radare » Radare2 » Version: 2.2.0
    cpe:2.3:a:radare:radare2:2.2.0
  • Radare » Radare2 » Version: 2.3.0
    cpe:2.3:a:radare:radare2:2.3.0
  • Radare » Radare2 » Version: 2.4.0
    cpe:2.3:a:radare:radare2:2.4.0
  • Radare » Radare2 » Version: 2.5.0
    cpe:2.3:a:radare:radare2:2.5.0
  • Radare » Radare2 » Version: 2.6.0
    cpe:2.3:a:radare:radare2:2.6.0
  • Radare » Radare2 » Version: 2.6.9
    cpe:2.3:a:radare:radare2:2.6.9
  • Radare » Radare2 » Version: 2.7.0
    cpe:2.3:a:radare:radare2:2.7.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved