CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-28072
https://notcve.org/view.php?id=CVE-2022-28072
22 Aug 2023 — A heap buffer overflow in r_read_le32 function in radare25.4.2 and 5.4.0. Un desbordamiento del búfer del montículo en la función r_read_le32 en radare2 5.4.2 y 5.4.0. • https://github.com/radareorg/radare2/commit/027cd9b7274988bb1af866539ba6c2fa2ff63e45 • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-28073
https://notcve.org/view.php?id=CVE-2022-28073
22 Aug 2023 — A use after free in r_reg_set_value function in radare2 5.4.2 and 5.4.0. Un use after free en la función r_reg_set_value en radare2 5.4.2 y 5.4.0. • https://github.com/radareorg/radare2/commit/59a9dfb60acf8b5c0312061cffd9693fc9526053 • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 1CVE-2023-4322 – Heap-based Buffer Overflow in radareorg/radare2
https://notcve.org/view.php?id=CVE-2023-4322
14 Aug 2023 — Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0. Una vulnerabilidad de desbordamiento de búfer en la región Heap de la memoria en el repositorio de GitHub radareorg/radare2 antes de 5.9.0. • https://github.com/radareorg/radare2/commit/ba919adb74ac368bf76b150a00347ded78b572dd • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2021-32495
https://notcve.org/view.php?id=CVE-2021-32495
07 Jul 2023 — Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow attackers to cause denial of service. • https://github.com/radareorg/radare2/commit/5e16e2d1c9fe245e4c17005d779fde91ec0b9c05 • CWE-416: Use After Free •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1CVE-2021-32494
https://notcve.org/view.php?id=CVE-2021-32494
07 Jul 2023 — Radare2 has a division by zero vulnerability in Mach-O parser's rebase_buffer function. This allow attackers to create malicious inputs that can cause denial of service. • https://github.com/radareorg/radare2/commit/a07dedb804a82bc01c07072861942dd80c6b6d62 • CWE-369: Divide By Zero •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-1605 – Denial of Service in radareorg/radare2
https://notcve.org/view.php?id=CVE-2023-1605
23 Mar 2023 — Denial of Service in GitHub repository radareorg/radare2 prior to 5.8.6. • https://github.com/radareorg/radare2/commit/508a6307045441defd1bef0999a1f7052097613f • CWE-400: Uncontrolled Resource Consumption •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2023-27114
https://notcve.org/view.php?id=CVE-2023-27114
10 Mar 2023 — radare2 v5.8.3 was discovered to contain a segmentation fault via the component wasm_dis at p/wasm/wasm.c. • https://github.com/radareorg/radare2/commit/a15067a8eaa836bcc24b0882712c14d1baa66509 • CWE-476: NULL Pointer Dereference •
CVSS: 8.6EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0302 – Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in radareorg/radare2
https://notcve.org/view.php?id=CVE-2023-0302
15 Jan 2023 — Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository radareorg/radare2 prior to 5.8.2. Fallo al sanitizar elementos especiales en un plano diferente (Special Element Injection) en el repositorio de GitHub radareorg/radare2 antes de 5.8.2. • https://github.com/radareorg/radare2/commit/961f0e723903011d4f54c2396e44efa91fcc74ce • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-75: Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-4843 – NULL Pointer Dereference in radareorg/radare2
https://notcve.org/view.php?id=CVE-2022-4843
29 Dec 2022 — NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.8.2. Eliminación de referencia del puntero NULL en el repositorio de GitHub radareorg/radare2 antes de 5.8.2. • https://github.com/radareorg/radare2/commit/842f809d4ec6a12af2906f948657281c9ebc8a24 • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-4398 – Integer Overflow or Wraparound in radareorg/radare2
https://notcve.org/view.php?id=CVE-2022-4398
10 Dec 2022 — Integer Overflow or Wraparound in GitHub repository radareorg/radare2 prior to 5.8.0. Desbordamiento de enteros o Wraparound en el repositorio de GitHub radareorg/radare2 anterior a 5.8.0. • https://github.com/radareorg/radare2/commit/b53a1583d05c3a5bfe5fa60da133fe59dfbb02b8 • CWE-190: Integer Overflow or Wraparound •