CVE-2022-4843

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-4843
NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.8.2.

7.5 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://github.com/radareorg/radare2/commit/842f809d4ec6a12af2906f948657281c9ebc8a24 Patch Third Party Advisory
https://huntr.dev/bounties/075b2760-66a0-4d38-b3b5-e9934956ab7f Exploit Patch Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FOXRDPI3OYYKO4PKXE3XD2IFONL6BCHR/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OFCCTYAD7ASNQ23ABCUPAZHEDEIOCW6T/
Configurations

Configuration 1 (hide)

cpe:2.3:a:radare:radare2:*:*:*:*:*:*:*:*
History

07 Nov 2023, 03:59

Type Values Removed Values Added
References
  • {'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FOXRDPI3OYYKO4PKXE3XD2IFONL6BCHR/', 'name': 'FEDORA-2023-ded3d48ebc', 'tags': [], 'refsource': 'FEDORA'}
  • {'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OFCCTYAD7ASNQ23ABCUPAZHEDEIOCW6T/', 'name': 'FEDORA-2023-5d5aa8b27a', 'tags': [], 'refsource': 'FEDORA'}
  • () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OFCCTYAD7ASNQ23ABCUPAZHEDEIOCW6T/ -
  • () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FOXRDPI3OYYKO4PKXE3XD2IFONL6BCHR/ -

18 Jun 2023, 03:15

Type Values Removed Values Added
References
  • (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/OFCCTYAD7ASNQ23ABCUPAZHEDEIOCW6T/ -
  • (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FOXRDPI3OYYKO4PKXE3XD2IFONL6BCHR/ -

05 Jan 2023, 21:48

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 7.5
CPE cpe:2.3:a:radare:radare2:*:*:*:*:*:*:*:*
First Time Radare
Radare radare2
References (CONFIRM) https://huntr.dev/bounties/075b2760-66a0-4d38-b3b5-e9934956ab7f - (CONFIRM) https://huntr.dev/bounties/075b2760-66a0-4d38-b3b5-e9934956ab7f - Exploit, Patch, Third Party Advisory
References (MISC) https://github.com/radareorg/radare2/commit/842f809d4ec6a12af2906f948657281c9ebc8a24 - (MISC) https://github.com/radareorg/radare2/commit/842f809d4ec6a12af2906f948657281c9ebc8a24 - Patch, Third Party Advisory

29 Dec 2022, 18:15

Type Values Removed Values Added
New CVE
Information

Published : 2022-12-29 18:15

Updated : 2023-12-10 14:48

NVD link : CVE-2022-4843

Mitre link : CVE-2022-4843

CVE.ORG link : CVE-2022-4843

JSON object : View

Products Affected

radare

  • radare2
CWE
CWE-476

NULL Pointer Dereference