Vulnerability Name: | CVE-2022-1283 (CCN-223812) | ||||||||||||
Assigned: | 2022-04-06 | ||||||||||||
Published: | 2022-04-06 | ||||||||||||
Updated: | 2022-04-15 | ||||||||||||
Summary: | NULL Pointer Dereference in r_bin_ne_get_entrypoints function in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability allows attackers to cause a denial of service (application crash). | ||||||||||||
CVSS v3 Severity: | 5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H) 5.0 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C)
5.9 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H/E:P/RL:O/RC:C)
| ||||||||||||
CVSS v2 Severity: | 4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)
| ||||||||||||
Vulnerability Type: | CWE-476 | ||||||||||||
Vulnerability Consequences: | Denial of Service | ||||||||||||
References: | Source: MITRE Type: CNA CVE-2022-1283 Source: XF Type: UNKNOWN radare2-cve20221283-dos(223812) Source: CCN Type: radare2 GIT Repository radare2 Source: MISC Type: Patch, Third Party Advisory https://github.com/radareorg/radare2/commit/18d1d064bf599a255d55f09fca3104776fc34a67 Source: CONFIRM Type: Exploit, Patch, Third Party Advisory https://huntr.dev/bounties/bfeb8fb8-644d-4587-80d4-cb704c404013 Source: CCN Type: huntr Web site NULL Pointer Dereference in r_bin_ne_get_entrypoints function in radareorg/radare2 Source: CCN Type: radare2 Web site radare2 | ||||||||||||
Vulnerable Configuration: | Configuration 1: Configuration CCN 1: ![]() | ||||||||||||
BACK |