CVE-2022-0139
Use After Free in radareorg/radare2
In short
A memory error in radare2 allows an attacker to use data that has already been freed, potentially crashing the application or executing arbitrary code. This happens when the software tries to access memory locations that were previously deallocated.
Technical detail
Use-after-free vulnerability in radare2 prior to version 5.6.0 (CWE-416) allows an attacker to reference freed memory during program execution, potentially leading to information disclosure, denial of service, or code execution depending on the memory layout and exploitation context.
Summary generated and translated by AI from the official description.
Use After Free in GitHub repository radareorg/radare2 prior to 5.6.0.
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
Affected products
radareorg · radareorg/radare2Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →