A vulnerability was found in Radare2 in versions prior to 5.6.2, 5.6.0, 5.5.4 and 5.5.2. Mapping a huge section filled with zeros of an ELF64 binary for MIPS architecture can lead to uncontrolled resource consumption and DoS.
References
Link | Resource |
---|---|
https://github.com/radareorg/radare2/issues/19436 | Exploit Issue Tracking Third Party Advisory |
Configurations
History
09 Aug 2022, 00:37
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-834 |
03 Mar 2022, 20:31
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://github.com/radareorg/radare2/issues/19436 - Exploit, Issue Tracking, Third Party Advisory | |
CPE | cpe:2.3:a:radare:radare2:*:*:*:*:*:*:*:* | |
CWE | CWE-400 | |
CVSS |
v2 : v3 : |
v2 : 5.0
v3 : 7.5 |
First Time |
Radare radare2
Radare |
24 Feb 2022, 19:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-02-24 19:15
Updated : 2023-12-10 14:22
NVD link : CVE-2021-4021
Mitre link : CVE-2021-4021
CVE.ORG link : CVE-2021-4021
JSON object : View
Products Affected
radare
- radare2