ByteOS Network

Vulnerability Details :

CVE-2018-11383

Assigner-mitre

Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At-22 May, 2018 | 19:00

Updated At-05 Aug, 2024 | 08:10

The r_strbuf_fini() function in radare2 2.5.0 allows remote attackers to cause a denial of service (invalid free and application crash) via a crafted ELF file because of an uninitialized variable in the CPSE handler in libr/anal/p/anal_avr.c.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:mitre

Assigner Org ID:8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At:22 May, 2018 | 19:00

Updated At:05 Aug, 2024 | 08:10

▼CVE Numbering Authority (CNA)

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
https://github.com/radare/radare2/commit/9d348bcc2c4bbd3805e7eec97b594be9febbdf9a	x_refsource_MISC
https://github.com/radare/radare2/issues/9943	x_refsource_MISC

Hyperlink: https://github.com/radare/radare2/commit/9d348bcc2c4bbd3805e7eec97b594be9febbdf9a

Resource:

x_refsource_MISC

Hyperlink: https://github.com/radare/radare2/issues/9943

Resource:

x_refsource_MISC

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://github.com/radare/radare2/commit/9d348bcc2c4bbd3805e7eec97b594be9febbdf9a	x_refsource_MISC x_transferred
https://github.com/radare/radare2/issues/9943	x_refsource_MISC x_transferred

Hyperlink: https://github.com/radare/radare2/commit/9d348bcc2c4bbd3805e7eec97b594be9febbdf9a

Resource:

x_refsource_MISC

x_transferred

Hyperlink: https://github.com/radare/radare2/issues/9943

Resource:

x_refsource_MISC

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:cve@mitre.org

Published At:22 May, 2018 | 19:29

Updated At:24 Aug, 2020 | 17:37

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.0	5.5	MEDIUM	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Primary	2.0	4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:N/A:P

Type: Primary

Version: 3.0

Base score: 5.5

Base severity: MEDIUM

Vector:

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Type: Primary

Version: 2.0

Base score: 4.3

Base severity: MEDIUM

Vector:

AV:N/AC:M/Au:N/C:N/I:N/A:P

CPE Matches

Radare2 (r2)

>>radare2>>2.5.0

cpe:2.3:a:radare:radare2:2.5.0:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-908	Primary	nvd@nist.gov

CWE ID: CWE-908

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
https://github.com/radare/radare2/commit/9d348bcc2c4bbd3805e7eec97b594be9febbdf9a	cve@mitre.org	Patch Third Party Advisory
https://github.com/radare/radare2/issues/9943	cve@mitre.org	Third Party Advisory

Hyperlink: https://github.com/radare/radare2/commit/9d348bcc2c4bbd3805e7eec97b594be9febbdf9a

Source: cve@mitre.org

Resource:

Patch

Third Party Advisory

Hyperlink: https://github.com/radare/radare2/issues/9943

Source: cve@mitre.org

Resource:

Third Party Advisory

Similar CVEs

63Records found

CVE-2022-0419

Matching Score-8

Assigner-Protect AI (formerly huntr.dev)

View Details

Matching Score-8

Assigner-Protect AI (formerly huntr.dev)

CVSS Score-5.9||MEDIUM

EPSS-0.34% / 56.12%

7 Day CHG~0.00%

Published-01 Feb, 2022 | 10:38

Updated-02 Aug, 2024 | 23:25

NULL Pointer Dereference in radareorg/radare2

NULL Pointer Dereference in GitHub repository radareorg/radare2 prior to 5.6.0.

Vendor-Fedora Project Radare2 (r2)

Product-fedora radare2 radareorg/radare2

CWE ID-CWE-476

NULL Pointer Dereference

CVE-2022-0173

Matching Score-8

Assigner-Protect AI (formerly huntr.dev)

View Details

Matching Score-8

Assigner-Protect AI (formerly huntr.dev)

CVSS Score-9.6||CRITICAL

EPSS-0.37% / 58.07%

7 Day CHG~0.00%

Published-11 Jan, 2022 | 16:55

Updated-02 Aug, 2024 | 23:18

Out-of-bounds Read in radareorg/radare2

radare2 is vulnerable to Out-of-bounds Read

Vendor-Fedora Project Radare2 (r2)

Product-fedora radare2 radareorg/radare2

CWE ID-CWE-125

Out-of-bounds Read

CVE-2022-0695

Matching Score-8

Assigner-Protect AI (formerly huntr.dev)

View Details

Matching Score-8

Assigner-Protect AI (formerly huntr.dev)

CVSS Score-6.8||MEDIUM

EPSS-0.32% / 54.75%

7 Day CHG~0.00%

Published-24 Feb, 2022 | 12:25

Updated-02 Aug, 2024 | 23:40

Denial of Service in radareorg/radare2

Denial of Service in GitHub repository radareorg/radare2 prior to 5.6.4.

Vendor-Fedora Project Radare2 (r2)

Product-fedora radare2 radareorg/radare2

CWE ID-CWE-400

Uncontrolled Resource Consumption

CVE-2021-32613

Matching Score-8

Assigner-Fedora Project

View Details

Matching Score-8

Assigner-Fedora Project

CVSS Score-5.5||MEDIUM

EPSS-0.35% / 56.77%

7 Day CHG~0.00%

Published-14 May, 2021 | 12:11

Updated-03 Aug, 2024 | 23:25

In radare2 through 5.3.0 there is a double free vulnerability in the pyc parse via a crafted file which can lead to DoS.

Vendor-n/a Fedora Project Radare2 (r2)

Product-fedora radare2 radare2

CWE ID-CWE-416

Use After Free

CWE ID-CWE-415

Double Free

CVE-2020-27795

Matching Score-6

Assigner-Red Hat, Inc.

View Details

Matching Score-6

Assigner-Red Hat, Inc.

CVSS Score-7.5||HIGH

EPSS-0.50% / 64.94%

7 Day CHG+0.43%

Published-19 Aug, 2022 | 22:36

Updated-04 Aug, 2024 | 16:25

A segmentation fault was discovered in radare2 with adf command. In libr/core/cmd_anal.c, when command "adf" has no or wrong argument, anal_fcn_data (core, input + 1) --> RAnalFunction *fcn = r_anal_get_fcn_in (core->anal, core->offset, -1); returns null pointer for fcn causing segmentation fault later in ensure_fcn_range (fcn).

Vendor-n/a Radare2 (r2)

Product-radare2 radare2

CWE ID-CWE-908

Use of Uninitialized Resource

CVE-2021-44003

Matching Score-4

Assigner-Siemens

View Details

Matching Score-4

Assigner-Siemens

CVSS Score-5.5||MEDIUM

EPSS-0.16% / 37.15%

7 Day CHG~0.00%

Published-14 Dec, 2021 | 12:06

Updated-04 Aug, 2024 | 04:10

A vulnerability has been identified in JT2Go (All versions < V13.2.0.5), Teamcenter Visualization (All versions < V13.2.0.5). The Tiff_Loader.dll is vulnerable to use of uninitialized memory while parsing user supplied TIFF files. This could allow an attacker to cause a denial-of-service condition.

Vendor-Siemens AG

Product-jt2go teamcenter_visualization JT2Go Teamcenter Visualization

CWE ID-CWE-457

Use of Uninitialized Variable

CWE ID-CWE-908

Use of Uninitialized Resource

CVE-2019-11750

Matching Score-4

Assigner-Mozilla Corporation

View Details

Matching Score-4

Assigner-Mozilla Corporation

CVSS Score-6.5||MEDIUM

EPSS-0.38% / 58.34%

7 Day CHG~0.00%

Published-27 Sep, 2019 | 17:14

Updated-04 Aug, 2024 | 23:03

A type confusion vulnerability exists in Spidermonkey, which results in a non-exploitable crash. This vulnerability affects Firefox < 69 and Firefox ESR < 68.1.

Vendor-Mozilla Corporation

Product-firefox firefox_esr Firefox Firefox ESR

CWE ID-CWE-843

Access of Resource Using Incompatible Type ('Type Confusion')

CWE ID-CWE-908

Use of Uninitialized Resource

CVE-2019-1010319

Matching Score-4

Assigner-7556d962-6fb7-411e-85fa-6cd62f095ba8

View Details

Matching Score-4

Assigner-7556d962-6fb7-411e-85fa-6cd62f095ba8

CVSS Score-5.5||MEDIUM

EPSS-1.04% / 76.53%

7 Day CHG~0.00%

Published-11 Jul, 2019 | 19:23

Updated-05 Aug, 2024 | 03:14

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseWave64HeaderConfig (wave64.c:211). The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit https://github.com/dbry/WavPack/commit/33a0025d1d63ccd05d9dbaa6923d52b1446a62fe.

Vendor-wavpack WavPack Canonical Ltd.Fedora Project Debian GNU/Linux

Product-ubuntu_linux debian_linux fedora wavpack WavPack

CWE ID-CWE-457

Use of Uninitialized Variable

CWE ID-CWE-908

Use of Uninitialized Resource

CVE-2021-40608

Matching Score-4

Assigner-MITRE Corporation

View Details

Matching Score-4

Assigner-MITRE Corporation

CVSS Score-5.5||MEDIUM

EPSS-0.04% / 11.86%

7 Day CHG~0.00%

Published-28 Jun, 2022 | 00:00

Updated-04 Aug, 2024 | 02:44

The gf_hinter_track_finalize function in GPAC 1.0.1 allows attackers to cause a denial of service via a crafted file in the MP4Box command.

Vendor-n/a GPAC

Product-gpac n/a

CWE ID-CWE-908

Use of Uninitialized Resource

CVE-2019-1010317

Matching Score-4

Assigner-7556d962-6fb7-411e-85fa-6cd62f095ba8

View Details

Matching Score-4

Assigner-7556d962-6fb7-411e-85fa-6cd62f095ba8

CVSS Score-5.5||MEDIUM

EPSS-1.04% / 76.53%

7 Day CHG~0.00%

Published-11 Jul, 2019 | 19:24

Updated-05 Aug, 2024 | 03:07

WavPack 5.1.0 and earlier is affected by: CWE-457: Use of Uninitialized Variable. The impact is: Unexpected control flow, crashes, and segfaults. The component is: ParseCaffHeaderConfig (caff.c:486). The attack vector is: Maliciously crafted .wav file. The fixed version is: After commit https://github.com/dbry/WavPack/commit/f68a9555b548306c5b1ee45199ccdc4a16a6101b.

Vendor-wavpack WavPack Canonical Ltd.Fedora Project Debian GNU/Linux

Product-ubuntu_linux debian_linux fedora wavpack WavPack

CWE ID-CWE-457

Use of Uninitialized Variable

CWE ID-CWE-908

Use of Uninitialized Resource

CVE-2021-30027

Matching Score-4

Assigner-MITRE Corporation

View Details

Matching Score-4

Assigner-MITRE Corporation

CVSS Score-5.5||MEDIUM

EPSS-0.13% / 33.64%

7 Day CHG~0.00%

Published-29 Apr, 2021 | 14:29

Updated-03 Aug, 2024 | 22:24

md_analyze_line in md4c.c in md4c 0.4.7 allows attackers to trigger use of uninitialized memory, and cause a denial of service via a malformed Markdown document.

Vendor-md4c_project n/a

Product-md4c n/a

CWE ID-CWE-908

Use of Uninitialized Resource

CVE-2018-19626

Matching Score-4

Assigner-MITRE Corporation

View Details

Matching Score-4

Assigner-MITRE Corporation

CVSS Score-5.5||MEDIUM

EPSS-0.29% / 52.00%

7 Day CHG~0.00%

Published-29 Nov, 2018 | 04:00

Updated-05 Aug, 2024 | 11:44

In Wireshark 2.6.0 to 2.6.4 and 2.4.0 to 2.4.10, the DCOM dissector could crash. This was addressed in epan/dissectors/packet-dcom.c by adding '\0' termination.

Vendor-n/a Wireshark Foundation Debian GNU/Linux

Product-wireshark debian_linux n/a

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-908

Use of Uninitialized Resource

CVE-2008-3688

Matching Score-4

Assigner-MITRE Corporation

View Details

Matching Score-4

Assigner-MITRE Corporation

CVSS Score-7.5||HIGH

EPSS-2.10% / 83.37%

7 Day CHG~0.00%

Published-14 Aug, 2008 | 22:00

Updated-07 Aug, 2024 | 09:45

sockethandler.cpp in HTTP Antivirus Proxy (HAVP) 0.88 allows remote attackers to cause a denial of service (hang) by connecting to a non-responsive server, which triggers an infinite loop due to an uninitialized variable.

Vendor-havp n/a

Product-http_antivirus_proxy n/a

CWE ID-CWE-908

Use of Uninitialized Resource

CVE-2018-11383

Credits

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs