Radare: >> Radare2 >> 5.8.8 Security Vulnerabilities
radare2 v5.9.8 and before contains a memory leak in the function bochs_open.
CVSS Score
3.3
EPSS Score
0.0
Published
2025-10-17
radare2 v5.9.8 and before contains a memory leak in the function r2r_subprocess_init.
CVSS Score
5.5
EPSS Score
0.0
Published
2025-10-17
radare2 v5.9.8 and before contains a memory leak in the function r_bin_object_new.
CVSS Score
5.5
EPSS Score
0.0
Published
2025-10-17
radare2 v.5.9.8 and before contains a memory leak in the function _load_relocations.
CVSS Score
5.5
EPSS Score
0.0
Published
2025-10-16
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in radareorg radare2 allows Overflow Buffers.This issue affects radare2: before <5.9.9.
CVSS Score
9.8
EPSS Score
0.002
Published
2025-03-03
Out-of-bounds Write vulnerability in radareorg radare2 allows
heap-based buffer over-read or buffer overflow.This issue affects radare2: before <5.9.9.
CVSS Score
9.8
EPSS Score
0.002
Published
2025-02-28
Buffer Overflow vulnerability in radarorg radare2 v.5.8.8 allows an attacker to execute arbitrary code via the name, type, or group fields.
CVSS Score
9.8
EPSS Score
0.009
Published
2024-12-17
A flaw was found in Radare2, which contains a command injection vulnerability caused by insufficient input validation when handling Pebble Application files. Maliciously crafted inputs can inject shell commands during command parsing, leading to unintended behavior during file processing​
CVSS Score
8.6
EPSS Score
0.001
Published
2024-12-15
Buffer Overflow vulnerability in radarorg radare2 v.5.8.8 allows an attacker to execute arbitrary code via the parse_die function.
CVSS Score
7.8
EPSS Score
0.0
Published
2024-12-02
An issue in radare2 v5.8.0 through v5.9.4 allows a local attacker to cause a denial of service via the __bf_div function.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-10-30
Page 1