radare
173 tracked vulnerabilities.
CVE-2026-14789
LOW
radareorg radare2 Memory64ListStream mdmp.c stack-based overflow
Jul 06, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-14788
LOW
radareorg radare2 cfile.c r_core_bin_load use after free
Jul 06, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-14787
LOW
radareorg radare2 pb Print cmd_print.inc cmd_print integer overflow
Jul 06, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-14786
LOW
radareorg radare2 str.c r_str_word_get0set integer overflow
Jul 06, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-14761
LOW
radareorg radare2 str.c r_str_append integer overflow
Jul 05, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-14760
LOW
radareorg radare2 regprofile disasm.c r_core_seek_arch_bits use after free
Jul 05, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-14759
LOW
radareorg radare2 RBinJava Line Number Table class.c r_bin_java_inner_classes_attr_calc_size heap-based overflow
Jul 05, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-14758
LOW
radareorg radare2 hexpairs cmd_anal.inc.c cmd_anal_opcode integer overflow
Jul 05, 2026
CVSS 3.3
EPSS 0.00
CVE-2026-14757
MEDIUM
radareorg radare2 cmd_anal.inc core_anal_bytes integer overflow
Jul 05, 2026
CVSS 5.3
EPSS 0.00
CVE-2026-8696
HIGH
radare2 6.1.5 Use-After-Free via gdbr_pids_list()
May 15, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-8695
HIGH
radare2 6.1.5 Use-After-Free via gdbr_threads_list()
May 15, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-6942
CRITICAL
radare2-mcp <=1.6.0 OS Command Injection via Shell Metacharacter Bypass
Apr 23, 2026
CVSS 9.8
EPSS 0.02
CVE-2026-6941
MEDIUM
radare2 < 6.1.4 Project Notes Path Traversal via Symlink
Apr 23, 2026
CVSS 6.6
EPSS 0.00
CVE-2026-6940
HIGH
radare2 < 6.1.4 Project Deletion Path Traversal Directory Deletion
Apr 23, 2026
CVSS 7.1
EPSS 0.00
CVE-2026-40517
HIGH
radare2 < 6.1.4 Command Injection via PDB Parser Symbol Names
Apr 22, 2026
CVSS 7.8
EPSS 0.01
CVE-2026-40527
HIGH
radare2 Command Injection via DWARF Parameter Names
Apr 17, 2026
CVSS 7.8
EPSS 0.01
CVE-2026-41015
HIGH
radare2 < 9236f44a28812fe911814e1b3a7bcf1e4de5d3c2 - OS Command Injection via PDB Name to rabin2 -PP
Apr 16, 2026
CVSS 7.4
EPSS 0.01
CVE-2026-40499
HIGH
radare2 < 6.1.4 Command Injection via PDB Parser print_gvars()
Apr 15, 2026
CVSS 7.8
EPSS 0.01
CVE-2025-63745
MEDIUM
radare2 < 6.0.5 - Denial of Service via NULL Pointer Dereference in bin_ne.c info()
Nov 14, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-63744
MEDIUM
radare2 < 6.0.5 - NULL Pointer Dereference in bin_dyldcache load() Function
Nov 14, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-60361
LOW
radare2 < 5.9.8 - Memory Leak in bochs_open
Oct 17, 2025
CVSS 3.3
EPSS 0.00
CVE-2025-60360
MEDIUM
radare2 < 5.9.8 - Memory Leak in r2r_subprocess_init
Oct 17, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-60359
MEDIUM
radare2 < 5.9.8 - Memory Leak in r_bin_object_new
Oct 17, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-60358
MEDIUM
radare2 < 5.9.8 - Memory Leak in _load_relocations
Oct 16, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-5648
LOW
Radare2 5.9.9 - Memory Corruption in r_cons_pal_init via -T Argument
Jun 05, 2025
CVSS 2.5
EPSS 0.00
Quick Filters