Vulnerabilities > Radare > Radare2 > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-08-07 | CVE-2019-14745 | Command Injection vulnerability in multiple products In radare2 before 3.7.0, a command injection vulnerability exists in bin_symbols() in libr/core/cbin.c. | 7.8 |
2019-06-13 | CVE-2019-12802 | Use After Free vulnerability in multiple products In radare2 through 3.5.1, the rcc_context function of libr/egg/egg_lang.c mishandles changing context. | 7.8 |
2019-06-10 | CVE-2019-12790 | Out-of-bounds Read vulnerability in Radare Radare2 In radare2 through 3.5.1, there is a heap-based buffer over-read in the r_egg_lang_parsechar function of egg_lang.c. | 7.8 |