Out-of-bounds read in `r_bin_ne_get_relocs` function in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability may allow attackers to read sensitive information or cause a crash.
References
Link | Resource |
---|---|
https://github.com/radareorg/radare2/commit/153bcdc29f11cd8c90e7d639a7405450f644ddb6 | Patch Third Party Advisory |
https://huntr.dev/bounties/52b57274-0e1a-4d61-ab29-1373b555fea0 | Exploit Third Party Advisory |
Configurations
History
15 Apr 2022, 03:27
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 6.4
v3 : 9.1 |
CPE | cpe:2.3:a:radare:radare2:*:*:*:*:*:*:*:* | |
References | (CONFIRM) https://huntr.dev/bounties/52b57274-0e1a-4d61-ab29-1373b555fea0 - Exploit, Third Party Advisory | |
References | (MISC) https://github.com/radareorg/radare2/commit/153bcdc29f11cd8c90e7d639a7405450f644ddb6 - Patch, Third Party Advisory |
11 Apr 2022, 12:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-04-11 12:15
Updated : 2024-02-04 22:29
NVD link : CVE-2022-1296
Mitre link : CVE-2022-1296
CVE.ORG link : CVE-2022-1296
JSON object : View
Products Affected
radare
- radare2
CWE
CWE-125
Out-of-bounds Read