Lucene search

@huntrdevCVELIST:CVE-2022-0695

HistoryFeb 24, 2022 - 12:25 p.m.

CVE-2022-0695 Denial of Service in radareorg/radare2

2022-02-2412:25:10

CWE-400

@huntrdev

www.cve.org

cve-2022-0695

denial of service

radareorg/radare2

CVSS3

6.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:H

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

46.1%

JSON

Denial of Service in GitHub repository radareorg/radare2 prior to 5.6.4.

CNA Affected

[
  {
    "product": "radareorg/radare2",
    "vendor": "radareorg",
    "versions": [
      {
        "lessThan": "5.6.4",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

github.com/radareorg/radare2/commit/634b886e84a5c568d243e744becc6b3223e089cf

huntr.dev/bounties/bdbddc0e-fb06-4211-a90b-7cbedcee2bea

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BZTIMAS53YT66FUS4QHQAFRJOBMUFG6D/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E6YBRQ3UCFWJVSOYIKPVUDASZ544TFND/

CVSS3

6.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:H

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

46.1%

JSON

Related for CVELIST:CVE-2022-0695