CVE-2022-34502 - Radare2 v5.7.0 was discovered to contain a heap buffer overflow via the function consume_encoded_nam

CVE-2022-34502

Summary

Radare2 v5.7.0 was discovered to contain a heap buffer overflow via the function consume_encoded_name_new at format/wasm/wasm.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted binary file.

References

https://github.com/radareorg/radare2/issues/20336

Vulnerable Configurations

cpe:2.3:a:radare:radare2:5.7.0:*:*:*:*:*:*:*
cpe:2.3:a:radare:radare2:5.7.0:*:*:*:*:*:*:*

CVSS

Base:	None
Impact:
Exploitability:

CWE

CWE-787

CAPEC

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

08-08-2023 - 14:21

Published

22-07-2022 - 15:15

Last modified

08-08-2023 - 14:21