Lucene search
K

85 matches found

NVD
NVD
added 2022/09/06 8:15 p.m.14 views

CVE-2022-36040

Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to an out-of-bounds write when getting data from PYCpython files. A user opening a malicious PYC file could be affected by this vulnerability, allowing an attacker to execute code ...

7.8CVSS0.00361EPSS
Exploits0References5
Prion
Prion
added 2022/09/06 8:15 p.m.15 views

Out-of-bounds

Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to an out-of-bounds write when getting data from PYCpython files. A user opening a malicious PYC file could be affected by this vulnerability, allowing an attacker to execute code ...

4.4CVSS7.7AI score0.00361EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2022/09/06 12:0 a.m.67 views

CVE-2022-36040

CVE-2022-36040 affects Rizin up to version 0.4.0. It is an out-of-bounds write when getting data from PYC (Python) files, and a user opening a malicious PYC could cause code execution on the local system. The patch is recorded in commit 68948017423a12786704e54227b8b2f918c2fd27; advisories note up...

7.8CVSS7.6AI score0.00361EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2022/09/06 12:0 a.m.3 views

CVE-2022-36040 Rizin Out-of-bounds Write vulnerability in pyc/marshal.c

Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to an out-of-bounds write when getting data from PYCpython files. A user opening a malicious PYC file could be affected by this vulnerability, allowing an attacker to execute code ...

7.8CVSS7.8AI score0.00361EPSS
Exploits0References5
Cvelist
Cvelist
added 2022/09/06 12:0 a.m.24 views

CVE-2022-36040 Rizin Out-of-bounds Write vulnerability in pyc/marshal.c

Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to an out-of-bounds write when getting data from PYCpython files. A user opening a malicious PYC file could be affected by this vulnerability, allowing an attacker to execute code ...

7.8CVSS7.9AI score0.00361EPSS
Exploits0References5
OSV
OSV
added 2022/09/06 12:0 a.m.6 views

CVE-2022-36040 Rizin Out-of-bounds Write vulnerability in pyc/marshal.c

Rizin is a UNIX-like reverse engineering framework and command-line toolset. Versions 0.4.0 and prior are vulnerable to an out-of-bounds write when getting data from PYCpython files. A user opening a malicious PYC file could be affected by this vulnerability, allowing an attacker to execute code ...

7.8CVSS7.7AI score0.00361EPSS
Exploits0References7
Veracode
Veracode
added 2021/12/14 8:34 p.m.22 views

Denial Of Service (DoS)

radare2 is vulnerable to denial of service. The vulnerability exists due to a double free vulnerability in the pyc parse which allows an attacker to crash the application via malicious input...

5.5CVSS5.4AI score0.01161EPSS
Exploits1References11Affected Software1
NVD
NVD
added 2021/05/14 1:15 p.m.18 views

CVE-2021-32613

In radare2 through 5.3.0 there is a double free vulnerability in the pyc parse via a crafted file which can lead to DoS...

5.5CVSS0.01161EPSS
Exploits1References8
OSV
OSV
added 2021/05/14 1:15 p.m.25 views

CVE-2021-32613

In radare2 through 5.3.0 there is a double free vulnerability in the pyc parse via a crafted file which can lead to DoS...

5.5CVSS6.5AI score0.01161EPSS
Exploits1References8
Prion
Prion
added 2021/05/14 1:15 p.m.25 views

Double free

In radare2 through 5.3.0 there is a double free vulnerability in the pyc parse via a crafted file which can lead to DoS...

4.3CVSS5.5AI score0.01161EPSS
Exploits1References8Affected Software2
UbuntuCve
UbuntuCve
added 2021/05/14 1:15 p.m.32 views

CVE-2021-32613

In radare2 through 5.3.0 there is a double free vulnerability in the pyc parse via a crafted file which can lead to DoS...

5.5CVSS6.8AI score0.01161EPSS
Exploits1References4
OSV
OSV
added 2021/05/14 1:15 p.m.1 views

UBUNTU-CVE-2021-32613

In radare2 through 5.3.0 there is a double free vulnerability in the pyc parse via a crafted file which can lead to DoS...

5.5CVSS6.8AI score0.01161EPSS
Exploits1References5
CVE
CVE
added 2021/05/14 12:11 p.m.92 views

CVE-2021-32613

Radare2 (affected up to version 5.3.0) contains a double-free vulnerability in the pyc parser triggered by a crafted file, which can lead to a denial of service. The issue has been addressed upstream with a fix in version 5.3.1 (per security advisories and patch notes from multiple sources). If u...

5.5CVSS5.4AI score0.01161EPSS
Exploits1References8Affected Software1
Debian CVE
Debian CVE
added 2021/05/14 12:11 p.m.38 views

CVE-2021-32613

In radare2 through 5.3.0 there is a double free vulnerability in the pyc parse via a crafted file which can lead to DoS...

5.5CVSS6AI score0.01161EPSS
Exploits1
AlpineLinux
AlpineLinux
added 2021/05/14 12:11 p.m.43 views

CVE-2021-32613

In radare2 through 5.3.0 there is a double free vulnerability in the pyc parse via a crafted file which can lead to DoS...

5.5CVSS5.6AI score0.01161EPSS
Exploits1
NVD
NVD
added 2021/02/18 12:15 a.m.32 views

CVE-2020-9306

Tesla SolarCity Solar Monitoring Gateway through 5.46.43 has a "Use of Hard-coded Credentials" issue because Digi ConnectPort X2e uses a .pyc file to store the cleartext password for the python user account...

8.8CVSS0.01165EPSS
Exploits1References4
OSV
OSV
added 2019/04/23 4:4 p.m.18 views

GHSA-74XW-82V7-HMRM Improper Input Validation in python-dbusmock

python-dbusmock before version 0.15.1 AddTemplate D-Bus method call or DBusTestCase.spawnservertemplate method could be tricked into executing malicious code if an attacker supplies a .pyc file...

8.8CVSS8.5AI score0.01815EPSS
Exploits0References4
Prion
Prion
added 2019/04/22 4:29 p.m.13 views

Design/Logic Flaw

python-dbusmock before version 0.15.1 AddTemplate D-Bus method call or DBusTestCase.spawnservertemplate method could be tricked into executing malicious code if an attacker supplies a .pyc file...

9.3CVSS7AI score0.01815EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2019/04/22 4:29 p.m.2 views

DEBIAN-CVE-2015-1326

python-dbusmock before version 0.15.1 AddTemplate D-Bus method call or DBusTestCase.spawnservertemplate method could be tricked into executing malicious code if an attacker supplies a .pyc file...

8.8CVSS7.1AI score0.01815EPSS
Exploits0References1
NVD
NVD
added 2019/04/22 4:29 p.m.26 views

CVE-2015-1326

python-dbusmock before version 0.15.1 AddTemplate D-Bus method call or DBusTestCase.spawnservertemplate method could be tricked into executing malicious code if an attacker supplies a .pyc file...

9.3CVSS7AI score0.01815EPSS
Exploits0References1
Rows per page
Query Builder