Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:25286
HistoryMay 10, 2020 - 11:24 p.m.

Command Injection

2020-05-1023:24:00
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11

0.001 Low

EPSS

Percentile

51.1%

radare2 is vulnerable to command injection. A command injection vulnerability exists in the function bin_symbols() in libr/core/cbin.c. An attacker is able to execute arbitrary shell commands using a malicious executable file due to improper handling of symbol names embedded in executables.