cvedb.io
CVE-2022-1238
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2022-04-06T10:15:08.200 · Last modified 2026-06-17T04:22:04.260

Summary

Out-of-bounds Write in libr/bin/format/ne/ne.c in GitHub repository radareorg/radare2 prior to 5.6.8. This vulnerability is heap overflow and may be exploitable. For more general description of heap buffer overflow, see [CWE](https://cwe.mitre.org/data/definitions/122.html).

Affected products

radare — radare2

Does this affect you?

Add your gear to cvedb and we'll alert you only when radare ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.