Radare2@1.3.0 Security Vulnerabilities and Issues — Radare2@1.3.0 CVE List

Lucene search

RadareRadare21.3.0

4 matches found

CVE•added 2017/03/27 5:59 p.m.•40 views

CVE-2017-7274

The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PE file.

5.5CVSS5.3AI score0.00227EPSS

CVE•added 2017/04/12 3:59 p.m.•39 views

CVE-2017-7716

The read_u32_leb128 function in libr/util/uleb128.c in radare2 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembly file.

5.5CVSS5.4AI score0.00186EPSS

CVE•added 2017/04/18 8:59 p.m.•37 views

CVE-2017-7946

The get_relocs_64 function in libr/bin/format/mach0/mach0.c in radare2 1.3.0 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted Mach0 file.

5.5CVSS5.3AI score0.00207EPSS

CVE•added 2017/04/13 4:59 p.m.•36 views

CVE-2017-7854

The consume_init_expr function in wasm.c in radare2 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted Web Assembly file.

5.5CVSS5.4AI score0.00256EPSS