Unicorn Engine Security Vulnerabilities and Issues — Unicorn Engine CVE List

Lucene search

Unicorn-engineUnicorn Engine

7 matches found

CVE•added 2022/06/02 2:15 p.m.•58 views

CVE-2022-29694

Unicorn Engine v2.0.0-rc7 and below was discovered to contain a NULL pointer dereference via qemu_ram_free.

7.5CVSS7.5AI score0.0111EPSS

CVE•added 2022/06/02 2:15 p.m.•49 views

CVE-2022-29692

Unicorn Engine v1.0.3 was discovered to contain a use-after-free vulnerability via the hook function.

7.8CVSS7.7AI score0.0016EPSS

CVE•added 2022/06/02 2:15 p.m.•49 views

CVE-2022-29693

Unicorn Engine v2.0.0-rc7 and below was discovered to contain a memory leak via the function uc_close at /my/unicorn/uc.c.

7.5CVSS7.5AI score0.00266EPSS

CVE•added 2022/06/02 2:15 p.m.•42 views

CVE-2022-29695

Unicorn Engine v2.0.0-rc7 contains memory leaks caused by an incomplete unicorn engine initialization.

7.5CVSS7.6AI score0.00266EPSS

CVE•added 2021/07/20 7:15 a.m.•36 views

CVE-2021-36979

Unicorn Engine 1.0.2 has an out-of-bounds write in tb_flush_armeb (called from cpu_arm_exec_armeb and tcg_cpu_exec_armeb).

5.5CVSS5.6AI score0.00205EPSS

CVE•added 2021/07/20 7:15 a.m.•32 views

CVE-2020-36431

Unicorn Engine 1.0.2 has an out-of-bounds write in helper_wfe_arm.

5.5CVSS5.5AI score0.00054EPSS

CVE•added 2021/12/26 5:15 a.m.•30 views

CVE-2021-44078

An issue was discovered in split_region in uc.c in Unicorn Engine before 2.0.0-rc5. It allows local attackers to escape the sandbox. An attacker must first obtain the ability to execute crafted code in the target sandbox in order to exploit this vulnerability. The specific flaw exists within the vi...

8.1CVSS8.1AI score0.00233EPSS