Radare: >> Radare2 Security Vulnerabilities
A null pointer deference in __core_anal_fcn function in radare2 5.4.2 and 5.4.0.
CVSS Score
7.5
EPSS Score
0.002
Published
2023-08-22
A use after free in r_reg_get_name_idx function in radare2 5.4.2 and 5.4.0.
CVSS Score
7.5
EPSS Score
0.002
Published
2023-08-22
A heap buffer overflow in r_read_le32 function in radare25.4.2 and 5.4.0.
CVSS Score
7.5
EPSS Score
0.004
Published
2023-08-22
A use after free in r_reg_set_value function in radare2 5.4.2 and 5.4.0.
CVSS Score
7.5
EPSS Score
0.004
Published
2023-08-22
Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0.
CVSS Score
7.3
EPSS Score
0.002
Published
2023-08-14
Radare2 has a division by zero vulnerability in Mach-O parser's rebase_buffer function. This allow attackers to create malicious inputs that can cause denial of service.
CVSS Score
10.0
EPSS Score
0.002
Published
2023-07-07
Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow attackers to cause denial of service.
CVSS Score
10.0
EPSS Score
0.003
Published
2023-07-07
Denial of Service in GitHub repository radareorg/radare2 prior to 5.8.6.
CVSS Score
7.5
EPSS Score
0.005
Published
2023-03-23
radare2 v5.8.3 was discovered to contain a segmentation fault via the component wasm_dis at p/wasm/wasm.c.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-03-10
Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository radareorg/radare2 prior to 5.8.2.
CVSS Score
8.6
EPSS Score
0.0
Published
2023-01-15