Vulnerability Details CVE-2026-14757
A vulnerability was determined in radareorg radare2 up to 6.1.6. This affects the function core_anal_bytes of the file libr/core/cmd_anal.inc. This manipulation causes integer overflow. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized. It is suggested to install a patch to address this issue.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 1.8%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 4.3
Products affected by CVE-2026-14757
-
cpe:2.3:a:radare:radare2:6.1.0
-
cpe:2.3:a:radare:radare2:6.1.2
-
cpe:2.3:a:radare:radare2:6.1.4