Lucene search

@huntrdevCVELIST:CVE-2022-0419

HistoryFeb 01, 2022 - 10:38 a.m.

CVE-2022-0419 NULL Pointer Dereference in radareorg/radare2

2022-02-0110:38:32

CWE-476

@huntrdev

www.cve.org

cve-2022-0419

github repository

radareorg/radare2

CVSS3

5.9

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

AI Score

6.7

Confidence

High

EPSS

0.002

Percentile

51.8%

JSON

NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.6.0.

CNA Affected

[
  {
    "product": "radareorg/radare2",
    "vendor": "radareorg",
    "versions": [
      {
        "lessThan": "5.6.0",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

www.openwall.com/lists/oss-security/2022/05/25/1

census-labs.com/news/2022/05/24/multiple-vulnerabilities-in-radare2/

github.com/radareorg/radare2/commit/feaa4e7f7399c51ee6f52deb84dc3f795b4035d6

huntr.dev/bounties/1f84e79d-70e7-4b29-8b48-a108f81c89aa

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IQIRJ72UALGMSWH6MYPVJQQLXFGZ23RS/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SKGIB52R4XPCPNEW6GF56EHW7ST24IJU/

CVSS3

5.9

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

AI Score

6.7

Confidence

High

EPSS

0.002

Percentile

51.8%

JSON

Related for CVELIST:CVE-2022-0419