CVE-2026-14758
LOW SEVERITYCVSS Score & Metrics
Base Score
3.3 / 10
Vector String
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Vulnerability Description
A vulnerability was identified in radareorg radare2 up to 6.1.6. This vulnerability affects the function cmd_anal_opcode of the file libr/core/cmd_anal.inc.c of the component hexpairs Parser. Such manipulation leads to integer overflow. The attack needs to be performed locally. The exploit is publicly available and might be used. The name of the patch is 84e773986e7e5bb30453a9384f498ec0ccc9d0a9. A patch should be applied to remediate this issue.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-189
Source
NVD
Vendor
radareorg
Product
radare2
External References
- https://github.com/radareorg/radare2/
- https://github.com/radareorg/radare2/commit/84e773986e7e5bb30453a9384f498ec0ccc9d0a9
- https://github.com/radareorg/radare2/issues/26042
- https://vuldb.com/cve/CVE-2026-14758
- https://vuldb.com/submit/850382
- https://vuldb.com/vuln/376347
- https://vuldb.com/vuln/376347/cti
Discussion (0)
Add Comment
No comments yet. Be the first!