24 matches found
CVE-2026-8695
radare2 6.1.5 contains a use-after-free vulnerability in the gdbrthreadslist function that allows remote attackers to trigger memory corruption by sending a valid qfThreadInfo response followed by a malformed qsThreadInfo response. Attackers can exploit this vulnerability through GDB remote...
EUVD-2020-8230
Malware in sbrugna...
EUVD-2022-32556
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-5641
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Radare2 5.9.9. It has been rated as problematic. This issue affects the function rconsisbreaked in the library /libr/cons/cons.c of...
Linux Distros Unpatched Vulnerability : CVE-2018-14015
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The sdbsetinternal function in sdb.c in radare2 2.7.0 allows remote attackers to cause a denial of service invalid read and application crash via a crafted ELF...
Linux Distros Unpatched Vulnerability : CVE-2018-11379
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The getdebuginfo function in radare2 2.5.0 allows remote attackers to cause a denial of service heap- based out-of-bounds read and application crash via a craft...
Linux Distros Unpatched Vulnerability : CVE-2017-6448
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dalvikdisassemble function in libr/asm/p/asmdalvik.c in radare2 1.2.1 allows remote attackers to cause a denial of service stack-based buffer overflow and...
Linux Distros Unpatched Vulnerability : CVE-2017-6415
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The dexparsedebugitem function in libr/bin/p/bindex.c in radare2 1.2.1 allows remote attackers to cause a denial of service NULL pointer dereference and...
Linux Distros Unpatched Vulnerability : CVE-2025-5645
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as problematic, was found in Radare2 5.9.9. This affects the function rconspalinit in the library /libr/cons/pal.c of the...
Linux Distros Unpatched Vulnerability : CVE-2022-1899
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out-of-bounds Read in GitHub repository radareorg/radare2 prior to 5.7.0. CVE-2022-1899 Note that Nessus relies on the presence of the package as reported by th...
CVE-2025-5647
A vulnerability was found in Radare2 5.9.9 and classified as problematic. This issue affects the function rconscontextbreakpop in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. The attack needs to be approached locally. The...
CVE-2025-5646
A vulnerability has been found in Radare2 5.9.9 and classified as problematic. This vulnerability affects the function rconsrainbowfree in the library /libr/cons/pal.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. It is possible to launch the attack on...
CVE-2025-5645
A vulnerability, which was classified as problematic, was found in Radare2 5.9.9. This affects the function rconspalinit in the library /libr/cons/pal.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. Attacking locally is a requirement. The complexity of ...
CVE-2025-5641
A vulnerability was found in Radare2 5.9.9. It has been rated as problematic. This issue affects the function rconsisbreaked in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. It is possible to launch the attack on the local...
CVE-2025-5644 Radare2 radiff2 cons.c r_cons_flush use after free
A vulnerability, which was classified as problematic, has been found in Radare2 5.9.9. Affected by this issue is the function rconsflush in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to use after free. Local access is required to approach thi...
CVE-2025-5642 Radare2 radiff2 pal.c r_cons_pal_init memory corruption
A vulnerability classified as problematic has been found in Radare2 5.9.9. Affected is the function rconspalinit in the library /libr/cons/pal.c of the component radiff2. The manipulation leads to memory corruption. The attack needs to be approached locally. The complexity of an attack is rather...
CVE-2025-5641
Radare2 5.9.9 contains CVE-2025-5641 affecting the function r_cons_is_breaked in libr/cons/cons.c of radiff2. The -T argument manipulation leads to memory corruption and local access is required. Reported attack complexity is high, with exploitation described as difficult; public disclosure of ex...
PT-2025-23901 · Radare2 · Radare2
Name of the Vulnerable Software and Affected Versions: Radare2 version 5.9.9 Description: A problematic vulnerability was found in the function cons stack load in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. An attack must...
PT-2025-23902 · Radare2 · Radare2
Name of the Vulnerable Software and Affected Versions: Radare2 version 5.9.9 Description: A vulnerability has been found in the function r cons flush in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to use after free. Local access is required to...
PT-2025-23904 · Radare2 · Radare2
Name of the Vulnerable Software and Affected Versions: Radare2 version 5.9.9 Description: A problem has been found in the function r cons rainbow free in the library /libr/cons/pal.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. It is possible to launch...