3.6 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:N/A:P
7.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
0.0005 Low
EPSS
Percentile
17.8%
Out-of-bounds Read in GitHub repository radareorg/radare2 prior to 5.7.0.
The bug causes the program reads data past the end of the intented buffer.
Typically, this can allow attackers to read sensitive information from
other memory locations or cause a crash.
github.com/radareorg/radare2/commit/3ecdbf8e21186a9c5a4d3cfa3b1e9fd27045340e
github.com/radareorg/radare2/pull/20097
huntr.dev/bounties/1c22055b-b015-47a8-a57b-4982978751d0
launchpad.net/bugs/cve/CVE-2022-1714
nvd.nist.gov/vuln/detail/CVE-2022-1714
security-tracker.debian.org/tracker/CVE-2022-1714
www.cve.org/CVERecord?id=CVE-2022-1714
3.6 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:N/A:P
7.1 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
0.0005 Low
EPSS
Percentile
17.8%