radare

173 tracked vulnerabilities.

CVE-2021-4021 HIGH
radare2 < 5.5.0 - Uncontrolled Resource Consumption via ELF64 MIPS Section Mapping
Feb 24, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-3673 HIGH
radare2 5.3.1 - Denial of Service via Crafted LE Binary
Aug 02, 2021
CVSS 7.5
EPSS 0.02
CVE-2021-32613 MEDIUM
radare2 < 5.3.0 - Double Free in pyc Parser
May 14, 2021
CVSS 5.5
EPSS 0.01
CVE-2020-27795 HIGH
radare2 < 4.4.0 - Denial of Service via adf Command Null Pointer Dereference
Aug 19, 2022
CVSS 7.5
EPSS 0.01
CVE-2020-27794 CRITICAL
radare2 < 4.4.0 - Double Free in cmd_info()
Aug 19, 2022
CVSS 9.1
EPSS 0.01
CVE-2020-27793 HIGH
radare2 < 4.4.0 - Denial of Service via Off-by-one Overflow in core_java.c
Aug 19, 2022
CVSS 7.5
EPSS 0.01
CVE-2020-24133 CRITICAL
Radare2-extras <e74a93c - Buffer Overflow
Jul 14, 2021
CVSS 9.8
EPSS 0.03
CVE-2020-17487 HIGH
radare2 4.5.0 - Denial of Service via Malformed PE File Signature Parsing
Aug 11, 2020
CVSS 7.5
EPSS 0.02
CVE-2020-16269 MEDIUM
radare2 4.5.0 - Denial of Service via Malformed DW_AT_name in DWARF Debug Info
Aug 03, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-15121 HIGH
radare2 < 4.5.0 - OS Command Injection via Malformed PDB File Name
Jul 20, 2020
CVSS 7.4
EPSS 0.02
CVE-2019-19647 HIGH
radare2 <= 4.0.0 - Denial of Service via Unvalidated Content in r_asm_pseudo_incbin
Dec 09, 2019
CVSS 7.8
EPSS 0.02
CVE-2019-19590 HIGH
radare2 < 4.0.0 - Use-After-Free via Integer Overflow in r_asm_massemble
Dec 05, 2019
CVSS 7.8
EPSS 0.03
CVE-2019-16718 HIGH
radare2 < 3.9.0 - OS Command Injection via Crafted Executable Symbol Names
Sep 23, 2019
CVSS 7.8
EPSS 0.02
CVE-2019-14745 HIGH
radare2 < 3.7.0 - Command Injection via Crafted Executable Symbol Names
Aug 07, 2019
CVSS 7.8
EPSS 0.04
CVE-2019-12865 MEDIUM
radare2 < 3.5.1 - Double Free in cmd_mount
Jun 17, 2019
CVSS 5.5
EPSS 0.01
CVE-2019-12829 HIGH
radare2 < 3.5.1 - Out-of-bounds Write in RParse API
Jun 15, 2019
CVSS 7.5
EPSS 0.02
CVE-2019-12802 HIGH
radare2 <= 3.5.1 - Use-After-Free in rcc_context
Jun 13, 2019
CVSS 7.8
EPSS 0.02
CVE-2019-12790 HIGH
radare2 < 3.5.1 - Heap-Based Buffer Over-Read in r_egg_lang_parsechar
Jun 10, 2019
CVSS 7.8
EPSS 0.02
CVE-2018-20461 MEDIUM
radare2 < 3.1.1 - Denial of Service via Crafted Binary File
Dec 25, 2018
CVSS 5.5
EPSS 0.01
CVE-2018-20460 MEDIUM
radare2 < 3.1.2 - Denial of Service via parseOperands Stack-Based Buffer Overflow
Dec 25, 2018
CVSS 5.5
EPSS 0.01
CVE-2018-20459 MEDIUM
radare2 < 3.1.3 - Denial of Service via armass_assemble Function
Dec 25, 2018
CVSS 5.5
EPSS 0.01
CVE-2018-20458 MEDIUM
radare2 < 3.1.1 - Denial of Service via Out-of-bounds Read in r_bin_dyldcache_extract
Dec 25, 2018
CVSS 5.5
EPSS 0.01
CVE-2018-20457 MEDIUM
radare2 < 3.1.3 - Denial of Service via Crafted ARM Assembly Input
Dec 25, 2018
CVSS 5.5
EPSS 0.01
CVE-2018-20456 MEDIUM
radare2 < 3.1.1 - Denial of Service via Crafted Input File
Dec 25, 2018
CVSS 5.5
EPSS 0.01
CVE-2018-20455 MEDIUM
radare2 < 3.1.1 - Denial of Service via Stack-Based Buffer Overflow in parseOperand
Dec 25, 2018
CVSS 5.5
EPSS 0.01