CVE-2022-0173Out-of-bounds Read in Radare2

CWE-125Out-of-bounds ReadCWE-20Improper Input Validation3 documents3 sources
Severity
5.5MEDIUMCNA
CISA8.6
No vector
EPSS
0.4%
top 42.17%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Radareorg Radare2Debian Radare2
Timeline
PublishedJan 11
Latest updateMar 3

Description

Out-of-bounds Read in radareorg/radare2 radare2 is vulnerable to Out-of-bounds Read

Affected Packages2 packages

CVEListV5radareorg/radareorg_radare2unspecifiedWill be fixed in the upcoming r2-5.6.0
debiandebian/radare2< radare2 5.9.0+dfsg-1 (sid)

🔴Vulnerability Details

1
CVEList
Out-of-bounds Read in radareorg/radare22022-01-11

📋Vendor Advisories

2
CISA
Cisco IOS and IOS XE Software Improper Input Validation Vulnerability2022-03-03
Debian
CVE-2022-0173: radare2 - radare2 is vulnerable to Out-of-bounds Read2022