Shodan
Vulnerabilities
Vulnerable Software
Radare:  >> Radare2  Security Vulnerabilities
CVE-2021-32494
Radare2 has a division by zero vulnerability in Mach-O parser's rebase_buffer function. This allow attackers to create malicious inputs that can cause denial of service.
CVSS Score
10.0
EPSS Score
0.002
Published
2023-07-07
CVE-2021-32495
Radare2 has a use-after-free vulnerability in pyc parser's get_none_object function. Attacker can read freed memory afterwards. This will allow attackers to cause denial of service.
CVSS Score
10.0
EPSS Score
0.003
Published
2023-07-07
CVE-2023-1605
Denial of Service in GitHub repository radareorg/radare2 prior to 5.8.6.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-03-23
CVE-2023-27114
radare2 v5.8.3 was discovered to contain a segmentation fault via the component wasm_dis at p/wasm/wasm.c.
CVSS Score
5.5
EPSS Score
0.001
Published
2023-03-10
CVE-2023-0302
Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) in GitHub repository radareorg/radare2 prior to 5.8.2.
CVSS Score
8.6
EPSS Score
0.002
Published
2023-01-15
CVE-2022-4843
NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.8.2.
CVSS Score
4.4
EPSS Score
0.001
Published
2022-12-29
CVE-2022-4398
Integer Overflow or Wraparound in GitHub repository radareorg/radare2 prior to 5.8.0.
CVSS Score
6.1
EPSS Score
0.003
Published
2022-12-10
CVE-2020-27793
An off-by-one overflow flaw was found in radare2 due to mismatched array length in core_java.c. This could allow an attacker to cause a crash, and perform a denail of service attack.
CVSS Score
7.5
EPSS Score
0.003
Published
2022-08-19
CVE-2020-27794
A double free issue was discovered in radare2 in cmd_info.c:cmd_info(). Successful exploitation could lead to modification of unexpected memory locations and potentially causing a crash.
CVSS Score
9.1
EPSS Score
0.003
Published
2022-08-19
CVE-2020-27795
A segmentation fault was discovered in radare2 with adf command. In libr/core/cmd_anal.c, when command "adf" has no or wrong argument, anal_fcn_data (core, input + 1) --> RAnalFunction *fcn = r_anal_get_fcn_in (core->anal, core->offset, -1); returns null pointer for fcn causing segmentation fault later in ensure_fcn_range (fcn).
CVSS Score
7.5
EPSS Score
0.003
Published
2022-08-19


Products
Pricing
Contact Us

Shodan ® - All rights reserved