radare
173 tracked vulnerabilities.
CVE-2021-4021
HIGH
radare2 < 5.5.0 - Uncontrolled Resource Consumption via ELF64 MIPS Section Mapping
Feb 24, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-3673
HIGH
radare2 5.3.1 - Denial of Service via Crafted LE Binary
Aug 02, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-32613
MEDIUM
radare2 < 5.3.0 - Double Free in pyc Parser
May 14, 2021
CVSS 5.5
EPSS 0.01
CVE-2020-27795
HIGH
radare2 < 4.4.0 - Denial of Service via adf Command Null Pointer Dereference
Aug 19, 2022
CVSS 7.5
EPSS 0.01
CVE-2020-27794
CRITICAL
radare2 < 4.4.0 - Double Free in cmd_info()
Aug 19, 2022
CVSS 9.1
EPSS 0.01
CVE-2020-27793
HIGH
radare2 < 4.4.0 - Denial of Service via Off-by-one Overflow in core_java.c
Aug 19, 2022
CVSS 7.5
EPSS 0.01
CVE-2020-24133
CRITICAL
Radare2-extras <e74a93c - Buffer Overflow
Jul 14, 2021
CVSS 9.8
EPSS 0.03
CVE-2020-17487
HIGH
radare2 4.5.0 - Denial of Service via Malformed PE File Signature Parsing
Aug 11, 2020
CVSS 7.5
EPSS 0.02
CVE-2020-16269
MEDIUM
radare2 4.5.0 - Denial of Service via Malformed DW_AT_name in DWARF Debug Info
Aug 03, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-15121
HIGH
radare2 < 4.5.0 - OS Command Injection via Malformed PDB File Name
Jul 20, 2020
CVSS 7.4
EPSS 0.02
CVE-2019-19647
HIGH
radare2 <= 4.0.0 - Denial of Service via Unvalidated Content in r_asm_pseudo_incbin
Dec 09, 2019
CVSS 7.8
EPSS 0.02
CVE-2019-19590
HIGH
radare2 < 4.0.0 - Use-After-Free via Integer Overflow in r_asm_massemble
Dec 05, 2019
CVSS 7.8
EPSS 0.03
CVE-2019-16718
HIGH
radare2 < 3.9.0 - OS Command Injection via Crafted Executable Symbol Names
Sep 23, 2019
CVSS 7.8
EPSS 0.02
CVE-2019-14745
HIGH
radare2 < 3.7.0 - Command Injection via Crafted Executable Symbol Names
Aug 07, 2019
CVSS 7.8
EPSS 0.04
CVE-2019-12865
MEDIUM
radare2 < 3.5.1 - Double Free in cmd_mount
Jun 17, 2019
CVSS 5.5
EPSS 0.01
CVE-2019-12829
HIGH
radare2 < 3.5.1 - Out-of-bounds Write in RParse API
Jun 15, 2019
CVSS 7.5
EPSS 0.02
CVE-2019-12802
HIGH
radare2 <= 3.5.1 - Use-After-Free in rcc_context
Jun 13, 2019
CVSS 7.8
EPSS 0.02
CVE-2019-12790
HIGH
radare2 < 3.5.1 - Heap-Based Buffer Over-Read in r_egg_lang_parsechar
Jun 10, 2019
CVSS 7.8
EPSS 0.02
CVE-2018-20461
MEDIUM
radare2 < 3.1.1 - Denial of Service via Crafted Binary File
Dec 25, 2018
CVSS 5.5
EPSS 0.01
CVE-2018-20460
MEDIUM
radare2 < 3.1.2 - Denial of Service via parseOperands Stack-Based Buffer Overflow
Dec 25, 2018
CVSS 5.5
EPSS 0.01
CVE-2018-20459
MEDIUM
radare2 < 3.1.3 - Denial of Service via armass_assemble Function
Dec 25, 2018
CVSS 5.5
EPSS 0.01
CVE-2018-20458
MEDIUM
radare2 < 3.1.1 - Denial of Service via Out-of-bounds Read in r_bin_dyldcache_extract
Dec 25, 2018
CVSS 5.5
EPSS 0.01
CVE-2018-20457
MEDIUM
radare2 < 3.1.3 - Denial of Service via Crafted ARM Assembly Input
Dec 25, 2018
CVSS 5.5
EPSS 0.01
CVE-2018-20456
MEDIUM
radare2 < 3.1.1 - Denial of Service via Crafted Input File
Dec 25, 2018
CVSS 5.5
EPSS 0.01
CVE-2018-20455
MEDIUM
radare2 < 3.1.1 - Denial of Service via Stack-Based Buffer Overflow in parseOperand
Dec 25, 2018
CVSS 5.5
EPSS 0.01
Quick Filters