radare2 · threatengine.sh

CVE-2026-8696

<= 6.1.4

radare2 6.1.5 contains a use-after-free vulnerability in the gdbr_pids_list() function within the GDB client core that allows remo

7.5HIGH

CVE-2026-8695

<= 6.1.4

radare2 6.1.5 contains a use-after-free vulnerability in the gdbr_threads_list() function that allows remote attackers to trigger

7.5HIGH

CVE-2026-6941

< 6.1.4

radare2 prior to 6.1.4 contains a path traversal vulnerability in its project notes handling that allows attackers to read or writ

6.6MEDIUM

CVE-2026-6940

< 6.1.4

radare2 prior to 6.1.4 contains a path traversal vulnerability in project deletion that allows local attackers to recursively dele

7.1HIGH

CVE-2026-40517

< 6.1.4

radare2 prior to 6.1.4 contains a command injection vulnerability in the PDB parser's print_gvars() function that allows attackers

7.8HIGH

CVE-2026-40499

<= 6.1.4

radare2 prior to version 6.1.4 contains a command injection vulnerability in the PDB parser's print_gvars() function that allows a

7.8HIGH

CVE-2025-63745

<= 6.0.5

A NULL pointer dereference vulnerability was discovered in radare2 6.0.5 and earlier within the info() function of bin_ne.c. A cra

5.5MEDIUM

CVE-2025-63744

<= 6.0.5

A NULL pointer dereference vulnerability was discovered in radare2 6.0.5 and earlier within the load() function of bin_dyldcache.c

4.3MEDIUM

CVE-2025-60361

<= 5.9.8

radare2 v5.9.8 and before contains a memory leak in the function bochs_open.

3.3LOW

CVE-2025-60360

<= 5.9.8

radare2 v5.9.8 and before contains a memory leak in the function r2r_subprocess_init.

5.5MEDIUM

CVE-2025-60359

<= 5.9.8

radare2 v5.9.8 and before contains a memory leak in the function r_bin_object_new.

5.5MEDIUM

CVE-2025-60358

<= 5.9.8

radare2 v.5.9.8 and before contains a memory leak in the function _load_relocations.

5.5MEDIUM

CVE-2025-5648

all versions

A vulnerability was found in Radare2 5.9.9. It has been classified as problematic. Affected is the function r_cons_pal_init in the

2.5LOW

CVE-2025-5647

all versions

A vulnerability was found in Radare2 5.9.9 and classified as problematic. This issue affects the function r_cons_context_break_pop

2.5LOW

CVE-2025-5646

all versions

A vulnerability has been found in Radare2 5.9.9 and classified as problematic. This vulnerability affects the function r_cons_rain

2.5LOW

CVE-2025-5645

all versions

A vulnerability, which was classified as problematic, was found in Radare2 5.9.9. This affects the function r_cons_pal_init in the

2.5LOW

CVE-2025-5644

all versions

A vulnerability, which was classified as problematic, has been found in Radare2 5.9.9. Affected by this issue is the function r_co

2.5LOW

CVE-2025-5643

all versions

A vulnerability classified as problematic was found in Radare2 5.9.9. Affected by this vulnerability is the function cons_stack_lo

2.5LOW

CVE-2025-5642

all versions

A vulnerability classified as problematic has been found in Radare2 5.9.9. Affected is the function r_cons_pal_init in the library

2.5LOW

CVE-2025-5641

all versions

A vulnerability was found in Radare2 5.9.9. It has been rated as problematic. This issue affects the function r_cons_is_breaked in

2.5LOW

CVE-2025-1864

<= 5.9.8

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in radareorg radare2 allows Overflow Buffers

9.8CRITICAL

CVE-2025-1744

<= 5.9.8

Out-of-bounds Write vulnerability in radareorg radare2 allows heap-based buffer over-read or buffer overflow.This issue affects

9.8CRITICAL

CVE-2025-1378

all versions

A vulnerability, which was classified as problematic, was found in radare2 5.9.9 33286. Affected is an unknown function in the lib

3.3LOW

CVE-2024-29646

all versions

Buffer Overflow vulnerability in radarorg radare2 v.5.8.8 allows an attacker to execute arbitrary code via the name, type, or grou

9.8CRITICAL

CVE-2024-11858

<= 5.9.8

A flaw was found in Radare2, which contains a command injection vulnerability caused by insufficient input validation when handlin

8.6HIGH

CVE-2024-29645

all versions

Buffer Overflow vulnerability in radarorg radare2 v.5.8.8 allows an attacker to execute arbitrary code via the parse_die function.

7.8HIGH

CVE-2024-48241

>= 5.8.0 and <= 5.9.4

An issue in radare2 v5.8.0 through v5.9.4 allows a local attacker to cause a denial of service via the __bf_div function.

5.5MEDIUM

CVE-2024-26475

>= 0.9.7 and < 5.8.8

An issue in radareorg radare2 v.0.9.7 through v.5.8.6 and fixed in v.5.8.8 allows a local attacker to cause a denial of service vi

5.5MEDIUM

CVE-2023-47016

< 5.9.0

radare2 5.8.9 has an out-of-bounds read in r_bin_object_set_items in libr/bin/bobj.c, causing a crash in r_read_le32 in libr/inclu

7.5HIGH

CVE-2023-46570

< 5.9.0

An out-of-bounds read in radare2 v.5.8.9 and before exists in the print_insn32 function of libr/arch/p/nds32/nds32-dis.h.

9.8CRITICAL

CVE-2023-46569

< 5.9.0

An out-of-bounds read in radare2 v.5.8.9 and before exists in the print_insn32_fpu function of libr/arch/p/nds32/nds32-dis.h.

9.8CRITICAL

CVE-2023-5686

< 5.9.0

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0.

8.8HIGH

CVE-2022-28073

all versions

A use after free in r_reg_set_value function in radare2 5.4.2 and 5.4.0.

7.5HIGH

CVE-2022-28072

all versions

A heap buffer overflow in r_read_le32 function in radare25.4.2 and 5.4.0.

7.5HIGH

CVE-2022-28071

all versions

A use after free in r_reg_get_name_idx function in radare2 5.4.2 and 5.4.0.

7.5HIGH

CVE-2022-28070

all versions

A null pointer deference in __core_anal_fcn function in radare2 5.4.2 and 5.4.0.

7.5HIGH

CVE-2022-28069

all versions

A heap buffer overflow in vax_opfunction in radare2 5.4.2 and 5.4.0.

7.5HIGH

CVE-2022-28068

all versions

A heap buffer overflow in r_sleb128 function in radare2 5.4.2 and 5.4.0.

7.5HIGH

CVE-2023-4322

<= 5.8.8

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0.

9.8CRITICAL

CVE-2021-32495

all versions

Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. Th

10.0CRITICAL

CVE-2021-32494

all versions

Radare2 has a division by zero vulnerability in Mach-O parser's rebase_buffer function. This allow attackers to create malicious i

10.0CRITICAL

CVE-2023-1605

< 5.8.6

Denial of Service in GitHub repository radareorg/radare2 prior to 5.8.6.

7.5HIGH

CVE-2023-27114

all versions

radare2 v5.8.3 was discovered to contain a segmentation fault via the component wasm_dis at p/wasm/wasm.c.

5.5MEDIUM

CVE-2023-0302

< 5.8.2

Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository radareorg/radare2 pri

7.8HIGH

CVE-2022-4843

< 5.8.2

NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.8.2.

7.5HIGH

CVE-2022-4398

< 5.8.0

Integer Overflow or Wraparound in GitHub repository radareorg/radare2 prior to 5.8.0.

7.8HIGH

CVE-2020-27795

< 4.4.0

A segmentation fault was discovered in radare2 with adf command. In libr/core/cmd_anal.c, when command "adf" has no or wrong argum

7.5HIGH

CVE-2020-27794

< 4.4.0

A double free issue was discovered in radare2 in cmd_info.c:cmd_info(). Successful exploitation could lead to modification of unex

9.1CRITICAL

CVE-2020-27793

< 4.4.0

An off-by-one overflow flaw was found in radare2 due to mismatched array length in core_java.c. This could allow an attacker to ca

7.5HIGH

CVE-2022-34520

all versions

Radare2 v5.7.2 was discovered to contain a NULL pointer dereference via the function r_bin_file_xtr_load_buffer at bin/bfile.c. Th

5.5MEDIUM

CVE-2022-34502

all versions

Radare2 v5.7.0 was discovered to contain a heap buffer overflow via the function consume_encoded_name_new at format/wasm/wasm.c. T

5.5MEDIUM

CVE-2022-1899

< 5.7.0

Out-of-bounds Read in GitHub repository radareorg/radare2 prior to 5.7.0.

9.1CRITICAL

CVE-2021-44974

< 5.5.4

radareorg radare2 version 5.5.2 is vulnerable to NULL Pointer Dereference via libr/bin/p/bin_symbols.c binary symbol parser.

5.5MEDIUM

CVE-2021-44975

all versions

radareorg radare2 5.5.2 is vulnerable to Buffer Overflow via /libr/core/anal_objc.c mach-o parser.

5.5MEDIUM

CVE-2022-1809

< 5.7.0

Access of Uninitialized Pointer in GitHub repository radareorg/radare2 prior to 5.7.0.

7.8HIGH

CVE-2022-1714

< 5.7.0

Out-of-bounds Read in GitHub repository radareorg/radare2 prior to 5.7.0. The bug causes the program reads data past the end of th

7.1HIGH

CVE-2022-1649

< 5.7.0

Null pointer dereference in libr/bin/format/mach0/mach0.c in radareorg/radare2 in GitHub repository radareorg/radare2 prior to 5.7

5.5MEDIUM

CVE-2022-1452

< 5.7.0

Out-of-bounds Read in r_bin_java_bootstrap_methods_attr_new function in GitHub repository radareorg/radare2 prior to 5.7.0. The bu

7.1HIGH

CVE-2022-1451

< 5.7.0

Out-of-bounds Read in r_bin_java_constant_value_attr_new function in GitHub repository radareorg/radare2 prior to 5.7.0. The bug c

7.1HIGH

CVE-2022-1444

< 5.7.0

heap-use-after-free in GitHub repository radareorg/radare2 prior to 5.7.0. This vulnerability is capable of inducing denial of ser

5.5MEDIUM

CVE-2022-1437

< 5.7.0

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.7.0. The bug causes the program reads data past the e

7.1HIGH

CVE-2022-1383

< 5.6.8

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.8. The bug causes the program reads data past the e

6.1MEDIUM

CVE-2022-1382

< 5.6.8

NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability is capable of making the radare

5.5MEDIUM

CVE-2022-1297

< 5.6.8

Out-of-bounds Read in r_bin_ne_get_entrypoints function in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability

9.1CRITICAL

CVE-2022-1296

< 5.6.8

Out-of-bounds read in r_bin_ne_get_relocs function in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability may

9.1CRITICAL

CVE-2022-1284

< 5.6.8

heap-use-after-free in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability is capable of inducing denial of ser

5.5MEDIUM

CVE-2022-1283

< 5.6.8

NULL Pointer Dereference in r_bin_ne_get_entrypoints function in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerab

5.5MEDIUM

CVE-2022-1240

<= 5.6.6

Heap buffer overflow in libr/bin/format/mach0/mach0.c in GitHub repository radareorg/radare2 prior to 5.8.6. If address sanitizer

7.8HIGH

CVE-2022-1238

< 5.6.8

Out-of-bounds Write in libr/bin/format/ne/ne.c in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability is heap o

7.8HIGH

CVE-2022-1237

< 5.6.8

Improper Validation of Array Index in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability is heap overflow and

7.8HIGH

CVE-2022-1244

< 5.6.8

heap-buffer-overflow in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability is capable of inducing denial of se

5.5MEDIUM

CVE-2022-1207

< 5.6.8

Out-of-bounds read in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability allows attackers to read sensitive in

6.6MEDIUM

CVE-2022-1052

< 5.6.6

Heap Buffer Overflow in iterate_chained_fixups in GitHub repository radareorg/radare2 prior to 5.6.6.

5.5MEDIUM

CVE-2022-1061

< 5.6.8

Heap Buffer Overflow in parseDragons in GitHub repository radareorg/radare2 prior to 5.6.8.

7.5HIGH

CVE-2022-1031

< 5.6.6

Use After Free in op_is_set_bp in GitHub repository radareorg/radare2 prior to 5.6.6.

7.8HIGH

CVE-2022-0849

< 5.6.6

Use After Free in r_reg_get_name_idx in GitHub repository radareorg/radare2 prior to 5.6.6.

5.5MEDIUM

CVE-2021-4021

<= 5.5.0

A vulnerability was found in Radare2 in versions prior to 5.6.2, 5.6.0, 5.5.4 and 5.5.2. Mapping a huge section filled with zeros

7.5HIGH

CVE-2022-0695

< 5.6.4

Denial of Service in GitHub repository radareorg/radare2 prior to 5.6.4.

5.5MEDIUM

CVE-2022-0476

< 5.6.4

Denial of Service in GitHub repository radareorg/radare2 prior to 5.6.4.

5.5MEDIUM

CVE-2022-0713

< 5.6.4

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.4.

7.1HIGH

CVE-2022-0712

< 5.6.4

NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.6.4.

5.5MEDIUM

CVE-2022-0676

< 5.6.4

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.4.

7.8HIGH

CVE-2022-0559

< 5.6.2

Use After Free in GitHub repository radareorg/radare2 prior to 5.6.2.

9.8CRITICAL

CVE-2022-0523

< 5.6.2

Use After Free in GitHub repository radareorg/radare2 prior to 5.6.2.

7.8HIGH

CVE-2022-0522

< 5.6.2

Access of Memory Location Before Start of Buffer in NPM radare2.js prior to 5.6.2.

7.1HIGH

CVE-2022-0521

< 5.6.2

Access of Memory Location After End of Buffer in GitHub repository radareorg/radare2 prior to 5.6.2.

7.1HIGH

CVE-2022-0520

< 5.6.2

Use After Free in NPM radare2.js prior to 5.6.2.

7.8HIGH

CVE-2022-0519

< 5.6.2

Buffer Access with Incorrect Length Value in GitHub repository radareorg/radare2 prior to 5.6.2.

7.1HIGH

CVE-2022-0518

< 5.6.2

Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.6.2.

7.1HIGH

CVE-2022-0139

< 5.6.0

Use After Free in GitHub repository radareorg/radare2 prior to 5.6.0.

9.8CRITICAL

CVE-2022-0419

< 5.6.0

NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.6.0.

5.5MEDIUM

CVE-2022-0173

< 5.6.0

radare2 is vulnerable to Out-of-bounds Read

5.5MEDIUM

CVE-2021-3673

all versions

A vulnerability was found in Radare2 in version 5.3.1. Improper input validation when reading a crafted LE binary can lead to reso

7.5HIGH

CVE-2020-24133

< 5.1.0

A heap buffer overflow vulnerability in the r_asm_swf_disass function of Radare2-extras before commit e74a93c allows attackers to

9.8CRITICAL

CVE-2021-32613

<= 5.3.0

In radare2 through 5.3.0 there is a double free vulnerability in the pyc parse via a crafted file which can lead to DoS.

5.5MEDIUM

CVE-2020-17487

all versions

radare2 4.5.0 misparses signature information in PE files, causing a segmentation fault in r_x509_parse_algorithmidentifier in lib

7.5HIGH

CVE-2020-16269

all versions

radare2 4.5.0 misparses DWARF information in executable files, causing a segmentation fault in parse_typedef in type_dwarf.c via a

5.5MEDIUM

CVE-2020-15121

< 4.5.0

In radare2 before version 4.5.0, malformed PDB file names in the PDB server path cause shell injection. To trigger the problem it'

7.4HIGH

CVE-2019-19647

<= 4.0.0

radare2 through 4.0.0 lacks validation of the content variable in the function r_asm_pseudo_incbin at libr/asm/asm.c, ultimately l

7.8HIGH

CVE-2019-19590

<= 4.0.0

In radare2 through 4.0, there is an integer overflow for the variable new_token_size in the function r_asm_massemble at libr/asm/a

7.8HIGH

CVE-2019-16718

< 3.9.0

In radare2 before 3.9.0, a command injection vulnerability exists in bin_symbols() in libr/core/cbin.c. By using a crafted executa

7.8HIGH

CVE-2019-14745

< 3.7.0

In radare2 before 3.7.0, a command injection vulnerability exists in bin_symbols() in libr/core/cbin.c. By using a crafted executa

7.8HIGH

CVE-2019-12865

<= 3.5.1

In radare2 through 3.5.1, cmd_mount in libr/core/cmd_mount.c has a double free for the ms command.

5.5MEDIUM

CVE-2019-12829

<= 3.5.1

radare2 through 3.5.1 mishandles the RParse API, which allows remote attackers to cause a denial of service (application crash) or

7.5HIGH

CVE-2019-12802

<= 3.5.1

In radare2 through 3.5.1, the rcc_context function of libr/egg/egg_lang.c mishandles changing context. This allows remote attacker

7.8HIGH

CVE-2019-12790

<= 3.5.1

In radare2 through 3.5.1, there is a heap-based buffer over-read in the r_egg_lang_parsechar function of egg_lang.c. This allows r

7.8HIGH

CVE-2018-20461

< 3.1.1

In radare2 prior to 3.1.1, core_anal_bytes in libr/core/cmd_anal.c allows attackers to cause a denial-of-service (application cras

5.5MEDIUM

CVE-2018-20460

< 3.1.2

In radare2 prior to 3.1.2, the parseOperands function in libr/asm/arch/arm/armass64.c allows attackers to cause a denial-of-servic

5.5MEDIUM

CVE-2018-20459

<= 3.1.3

In radare2 through 3.1.3, the armass_assemble function in libr/asm/arch/arm/armass.c allows attackers to cause a denial-of-service

5.5MEDIUM

CVE-2018-20458

< 3.1.1

In radare2 prior to 3.1.1, r_bin_dyldcache_extract in libr/bin/format/mach0/dyldcache.c may allow attackers to cause a denial-of-s

5.5MEDIUM

CVE-2018-20457

<= 3.1.3

In radare2 through 3.1.3, the assemble function inside libr/asm/p/asm_arm_cs.c allows attackers to cause a denial-of-service (appl

5.5MEDIUM

CVE-2018-20456

< 3.1.1

In radare2 prior to 3.1.1, the parseOperand function inside libr/asm/p/asm_x86_nz.c may allow attackers to cause a denial of servi

5.5MEDIUM

CVE-2018-20455

< 3.1.1

In radare2 prior to 3.1.1, the parseOperand function inside libr/asm/p/asm_x86_nz.c may allow attackers to cause a denial of servi

5.5MEDIUM

CVE-2018-19843

< 3.1.1

opmov in libr/asm/p/asm_x86_nz.c in radare2 before 3.1.0 allows attackers to cause a denial of service (buffer over-read) via craf

5.5MEDIUM

CVE-2018-19842

< 3.1.0

getToken in libr/asm/p/asm_x86_nz.c in radare2 before 3.1.0 allows attackers to cause a denial of service (stack-based buffer over

5.5MEDIUM

CVE-2018-15834

< 2.9.0

In radare2 before 2.9.0, a heap overflow vulnerability exists in the read_module_referenced_functions function in libr/anal/flirt.

5.5MEDIUM

CVE-2018-14017

all versions

The r_bin_java_annotation_new function in shlr/java/class.c in radare2 2.7.0 allows remote attackers to cause a denial of service

5.5MEDIUM

CVE-2018-14016

all versions

The r_bin_mdmp_init_directory_entry function in mdmp.c in radare2 2.7.0 allows remote attackers to cause a denial of service (heap

5.5MEDIUM

CVE-2018-14015

>= 2.0.0 and <= 2.7.0

The sdb_set_internal function in sdb.c in radare2 2.7.0 allows remote attackers to cause a denial of service (invalid read and app

5.5MEDIUM

CVE-2018-12322

all versions

There is a heap out of bounds read in radare2 2.6.0 in _6502_op() in libr/anal/p/anal_6502.c via a crafted iNES ROM binary file.

5.5MEDIUM

CVE-2018-12321

all versions

There is a heap out of bounds read in radare2 2.6.0 in java_switch_op() in libr/anal/p/anal_java.c via a crafted Java binary file.

7.8HIGH

CVE-2018-12320

all versions

There is a use after free in radare2 2.6.0 in r_anal_bb_free() in libr/anal/bb.c via a crafted Java binary file.

7.8HIGH

CVE-2018-11384

all versions

The sh_op() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and appl

5.5MEDIUM

CVE-2018-11383

all versions

The r_strbuf_fini() function in radare2 2.5.0 allows remote attackers to cause a denial of service (invalid free and application c

5.5MEDIUM

CVE-2018-11382

all versions

The _inst__sts() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and

5.5MEDIUM

CVE-2018-11381

all versions

The string_scan_range() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds r

5.5MEDIUM

CVE-2018-11380

all versions

The parse_import_ptr() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds re

5.5MEDIUM

CVE-2018-11379

all versions

The get_debug_info() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read

5.5MEDIUM

CVE-2018-11378

all versions

The wasm_dis() function in libr/asm/arch/wasm/wasm.c in or possibly have unspecified other impact via a crafted WASM file.

7.8HIGH

CVE-2018-11377

all versions

The avr_op_analyze() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read

5.5MEDIUM

CVE-2018-11376

all versions

The r_read_le32() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read an

5.5MEDIUM

CVE-2018-11375

all versions

The _inst__lds() function in radare2 2.5.0 allows remote attackers to cause a denial of service (heap-based out-of-bounds read and

5.5MEDIUM

CVE-2018-10187

all versions

In radare2 2.5.0, there is a heap-based buffer over-read in the dalvik_op function (libr/anal/p/anal_dalvik.c). Remote attackers c

5.5MEDIUM

CVE-2018-10186

all versions

In radare2 2.5.0, there is a heap-based buffer over-read in the r_hex_bin2str function (libr/util/hex.c). Remote attackers could l

5.5MEDIUM

CVE-2018-8810

all versions

In radare2 2.4.0, there is a heap-based buffer over-read in the get_ivar_list_t function of mach0_classes.c. Remote attackers coul

5.5MEDIUM

CVE-2018-8809

all versions

In radare2 2.4.0, there is a heap-based buffer over-read in the dalvik_op function of anal_dalvik.c. Remote attackers could levera

5.5MEDIUM

CVE-2018-8808

all versions

In radare2 2.4.0, there is a heap-based buffer over-read in the r_asm_disassemble function of asm.c. Remote attackers could levera

5.5MEDIUM

CVE-2017-16805

all versions

In radare2 2.0.1, libr/bin/dwarf.c allows remote attackers to cause a denial of service (invalid read and application crash) via a

5.5MEDIUM

CVE-2017-16359

all versions

In radare 2.0.1, a pointer wraparound vulnerability exists in store_versioninfo_gnu_verdef() in libr/bin/format/elf/elf.c.

5.5MEDIUM

CVE-2017-16358

all versions

In radare 2.0.1, an out-of-bounds read vulnerability exists in string_scan_range() in libr/bin/bin.c when doing a string search.

7.8HIGH

CVE-2017-16357

all versions

In radare 2.0.1, a memory corruption vulnerability exists in store_versioninfo_gnu_verdef() and store_versioninfo_gnu_verneed() in

7.8HIGH

CVE-2017-15932

all versions

In radare2 2.0.1, an integer exception (negative number leading to an invalid memory access) exists in store_versioninfo_gnu_verde

7.8HIGH

CVE-2017-15931

all versions

In radare2 2.0.1, an integer exception (negative number leading to an invalid memory access) exists in store_versioninfo_gnu_verne

7.8HIGH

CVE-2017-15385

all versions

The store_versioninfo_gnu_verdef function in libr/bin/format/elf/elf.c in radare2 2.0.0 allows remote attackers to cause a denial

7.8HIGH

CVE-2017-15368

all versions

The wasm_dis function in libr/asm/arch/wasm/wasm.c in radare2 2.0.0 allows remote attackers to cause a denial of service (stack-ba

7.8HIGH

CVE-2017-10929

all versions

The grub_memmove function in shlr/grub/kern/misc.c in radare2 1.5.0 allows remote attackers to cause a denial of service (heap-bas

7.8HIGH

CVE-2017-9949

all versions

The grub_memmove function in shlr/grub/kern/misc.c in radare2 1.5.0 allows remote attackers to cause a denial of service (stack-ba

7.8HIGH

CVE-2017-9763

all versions

The grub_ext2_read_block function in fs/ext2.c in GNU GRUB before 2013-11-12, as used in shlr/grub/fs/ext2.c in radare2 1.5.0, all

7.5HIGH

CVE-2017-9762

all versions

The cmd_info function in libr/core/cmd_info.c in radare2 1.5.0 allows remote attackers to cause a denial of service (use-after-fre

5.5MEDIUM

CVE-2017-9761

all versions

The find_eoq function in libr/core/cmd.c in radare2 1.5.0 allows remote attackers to cause a denial of service (heap-based out-of-

5.5MEDIUM

CVE-2017-9520

all versions

The r_config_set function in libr/config/config.c in radare2 1.5.0 allows remote attackers to cause a denial of service (use-after

5.5MEDIUM

CVE-2017-7946

all versions

The get_relocs_64 function in libr/bin/format/mach0/mach0.c in radare2 1.3.0 allows remote attackers to cause a denial of service

5.5MEDIUM

CVE-2017-7854

all versions

The consume_init_expr function in wasm.c in radare2 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer

5.5MEDIUM

CVE-2017-7716

all versions

The read_u32_leb128 function in libr/util/uleb128.c in radare2 1.3.0 allows remote attackers to cause a denial of service (heap-ba

5.5MEDIUM

CVE-2017-6448

all versions

The dalvik_disassemble function in libr/asm/p/asm_dalvik.c in radare2 1.2.1 allows remote attackers to cause a denial of service (

7.8HIGH

CVE-2017-6194

all versions

The relocs function in libr/bin/p/bin_bflt.c in radare2 1.2.1 allows remote attackers to cause a denial of service (heap-based buf

7.8HIGH

CVE-2017-7274

all versions

The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to cause a denial of service (NULL

5.5MEDIUM

CVE-2017-6415

all versions

The dex_parse_debug_item function in libr/bin/p/bin_dex.c in radare2 1.2.1 allows remote attackers to cause a denial of service (N

5.5MEDIUM

CVE-2017-6387

all versions

The dex_loadcode function in libr/bin/p/bin_dex.c in radare2 1.2.1 allows remote attackers to cause a denial of service (out-of-bo

5.5MEDIUM

CVE-2017-6319

all versions

The dex_parse_debug_item function in libr/bin/p/bin_dex.c in radare2 1.2.1 allows remote attackers to cause a denial of service (b

7.8HIGH

CVE-2017-6197

all versions

The r_read_* functions in libr/include/r_endian.h in radare2 1.2.1 allow remote attackers to cause a denial of service (NULL point

5.5MEDIUM

radare radare2