CVE-2022-29694

HIGH

Unicorn Engine <= 2.0.0-rc7 - NULL Pointer Dereference via qemu_ram_free

Title source: llm

Unicorn Engine v2.0.0-rc7 and below was discovered to contain a NULL pointer dereference via qemu_ram_free.

Core 5

Core References

Exploit, Issue Tracking, Third Party Advisory x_refsource_misc

Exploit, Technical Description, Third Party Advisory x_refsource_misc

Patch, Third Party Advisory x_refsource_misc

Patch, Third Party Advisory x_refsource_misc

Patch, Third Party Advisory x_refsource_misc

CVSS v3 7.5

EPSS 0.0183

EPSS Percentile 76.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-476

Status published

Products (2)

unicorn-engine/unicorn_engine 2.0.0 (7 CPE variants)

unicorn-engine/unicorn_engine < 2.0.0

Published Jun 02, 2022

Tracked Since Feb 18, 2026