Lucene search

@huntrdevCVELIST:CVE-2022-0476

HistoryFeb 23, 2022 - 4:40 p.m.

CVE-2022-0476 Denial of Service in radareorg/radare2

2022-02-2316:40:10

CWE-400

@huntrdev

www.cve.org

denial of service

radareorg

radare2

github repository

vulnerability

CVSS3

7.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:H

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

46.1%

JSON

Denial of Service in GitHub repository radareorg/radare2 prior to 5.6.4.

CNA Affected

[
  {
    "product": "radareorg/radare2",
    "vendor": "radareorg",
    "versions": [
      {
        "lessThan": "5.6.4",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

github.com/radareorg/radare2/commit/27fe8031782d3a06c3998eaa94354867864f9f1b

huntr.dev/bounties/81ddfbda-6c9f-4b69-83ff-85b15141e35d

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BZTIMAS53YT66FUS4QHQAFRJOBMUFG6D/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E6YBRQ3UCFWJVSOYIKPVUDASZ544TFND/

CVSS3

7.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:H

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

46.1%

JSON

Related for CVELIST:CVE-2022-0476