Radare2 Security Vulnerabilities and Issues — Radare2 CVE List

Lucene search

RadareRadare2

4 matches found

CVE•added 2017/03/02 1:59 a.m.•44 views

CVE-2017-6415

The dex_parse_debug_item function in libr/bin/p/bin_dex.c in radare2 1.2.1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted DEX file.

5.5CVSS5.3AI score0.00231EPSS

CVE•added 2017/03/02 1:59 a.m.•41 views

CVE-2017-6387

The dex_loadcode function in libr/bin/p/bin_dex.c in radare2 1.2.1 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted DEX file.

5.5CVSS5.3AI score0.00234EPSS

CVE•added 2017/03/27 5:59 p.m.•40 views

CVE-2017-7274

The r_pkcs7_parse_cms function in libr/util/r_pkcs7.c in radare2 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted PE file.

5.5CVSS5.3AI score0.00227EPSS

CVE•added 2017/03/02 1:59 a.m.•35 views

CVE-2017-6319

The dex_parse_debug_item function in libr/bin/p/bin_dex.c in radare2 1.2.1 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted DEX file.

7.8CVSS8.1AI score0.00292EPSS