CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 2CVE-2023-47016
https://notcve.org/view.php?id=CVE-2023-47016
22 Nov 2023 — radare2 5.8.9 has an out-of-bounds read in r_bin_object_set_items in libr/bin/bobj.c, causing a crash in r_read_le32 in libr/include/r_endian.h. radare2 5.8.9 tiene una lectura fuera de los límites en r_bin_object_set_items en libr/bin/bobj.c, lo que provoca un bloqueo en r_read_le32 en libr/include/r_endian.h. • https://gist.github.com/gandalf4a/65705be4f84269cb7cd725a1d4ab2ffa • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 2CVE-2023-46569
https://notcve.org/view.php?id=CVE-2023-46569
28 Oct 2023 — An out-of-bounds read in radare2 v.5.8.9 and before exists in the print_insn32_fpu function of libr/arch/p/nds32/nds32-dis.h. Existe una lectura fuera de los límites en radare2 v.5.8.9 y anteriores en la función print_insn32_fpu de libr/arch/p/nds32/nds32-dis.h. • https://gist.github.com/gandalf4a/afeaf8cc958f95876f0ee245b8a002e8 • CWE-125: Out-of-bounds Read •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 2CVE-2023-46570
https://notcve.org/view.php?id=CVE-2023-46570
28 Oct 2023 — An out-of-bounds read in radare2 v.5.8.9 and before exists in the print_insn32 function of libr/arch/p/nds32/nds32-dis.h. Existe una lectura fuera de los límites en radare2 v.5.8.9 y anteriores en la función print_insn32 de libr/arch/p/nds32/nds32-dis.h. • https://gist.github.com/gandalf4a/d7fa58f1b3418ef08ad244acccc10ba6 • CWE-125: Out-of-bounds Read •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 1CVE-2023-5686 – Heap-based Buffer Overflow in radareorg/radare2
https://notcve.org/view.php?id=CVE-2023-5686
20 Oct 2023 — Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0. Desbordamiento de búfer basado en montón en el repositorio de GitHub radareorg/radare2 antes de 5.9.0. • https://github.com/radareorg/radare2/commit/1bdda93e348c160c84e30da3637acef26d0348de • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 1CVE-2023-4322 – Heap-based Buffer Overflow in radareorg/radare2
https://notcve.org/view.php?id=CVE-2023-4322
14 Aug 2023 — Heap-based Buffer Overflow in GitHub repository radareorg/radare2 prior to 5.9.0. Una vulnerabilidad de desbordamiento de búfer en la región Heap de la memoria en el repositorio de GitHub radareorg/radare2 antes de 5.9.0. • https://github.com/radareorg/radare2/commit/ba919adb74ac368bf76b150a00347ded78b572dd • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-1605 – Denial of Service in radareorg/radare2
https://notcve.org/view.php?id=CVE-2023-1605
23 Mar 2023 — Denial of Service in GitHub repository radareorg/radare2 prior to 5.8.6. • https://github.com/radareorg/radare2/commit/508a6307045441defd1bef0999a1f7052097613f • CWE-400: Uncontrolled Resource Consumption •
CVSS: 8.6EPSS: 0%CPEs: 1EXPL: 1CVE-2023-0302 – Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in radareorg/radare2
https://notcve.org/view.php?id=CVE-2023-0302
15 Jan 2023 — Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository radareorg/radare2 prior to 5.8.2. Fallo al sanitizar elementos especiales en un plano diferente (Special Element Injection) en el repositorio de GitHub radareorg/radare2 antes de 5.8.2. • https://github.com/radareorg/radare2/commit/961f0e723903011d4f54c2396e44efa91fcc74ce • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-75: Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-4843 – NULL Pointer Dereference in radareorg/radare2
https://notcve.org/view.php?id=CVE-2022-4843
29 Dec 2022 — NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.8.2. Eliminación de referencia del puntero NULL en el repositorio de GitHub radareorg/radare2 antes de 5.8.2. • https://github.com/radareorg/radare2/commit/842f809d4ec6a12af2906f948657281c9ebc8a24 • CWE-476: NULL Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-4398 – Integer Overflow or Wraparound in radareorg/radare2
https://notcve.org/view.php?id=CVE-2022-4398
10 Dec 2022 — Integer Overflow or Wraparound in GitHub repository radareorg/radare2 prior to 5.8.0. Desbordamiento de enteros o Wraparound en el repositorio de GitHub radareorg/radare2 anterior a 5.8.0. • https://github.com/radareorg/radare2/commit/b53a1583d05c3a5bfe5fa60da133fe59dfbb02b8 • CWE-190: Integer Overflow or Wraparound •
CVSS: 9.4EPSS: 0%CPEs: 1EXPL: 1CVE-2020-27794
https://notcve.org/view.php?id=CVE-2020-27794
19 Aug 2022 — A double free issue was discovered in radare2 in cmd_info.c:cmd_info(). Successful exploitation could lead to modification of unexpected memory locations and potentially causing a crash. Se ha detectado un problema de doble liberación en radare2 en la función cmd_info.c:cmd_info(). Una explotación con éxito podría conllevar a una modificación de ubicaciones de memoria no esperadas y causar potencialmente un bloqueo. • https://github.com/radareorg/radare2/commit/cb8b683758edddae2d2f62e8e63a738c39f92683 • CWE-415: Double Free •