Buffer overflow in Radareorg Radare2

CVE-2025-1744

Out-of-bounds Write vulnerability in radareorg radare2 allows heap-based buffer over-read or buffer overflow.This issue affects radare2: before <5.9.9.

Vulnerability class: Buffer Overflow

EPSS: 0.005 (64.0th percentile) — read the EPSS interpretation.

Affected products

Radareorg Radare2 — versions 0

Weakness classification (CWE)

CWE-787 — Out-of-bounds Write

References

github.com/radareorg/radare2/pull/23969 (patch, third-party-advisory)