Mend Vulnerability Database

Vulnerability DatabaseCVE-2022-1714

CVE-2022-1714

Published:May 13, 2022

Updated:April 23, 2026

Out-of-bounds Read in GitHub repository radareorg/radare2 prior to 5.7.0. The bug causes the program reads data past the end of the intented buffer. Typically, this can allow attackers to read sensitive information from other memory locations or cause a crash.

Related Resources (5)

https://security-tracker.debian.org/tracker/CVE-2022-1714

https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/1xxx/CVE-2022-1714.json

https://huntr.dev/bounties/1c22055b-b015-47a8-a57b-4982978751d0

https://nvd.nist.gov/vuln/detail/CVE-2022-1714

https://github.com/radareorg/radare2/commit/3ecdbf8e21186a9c5a4d3cfa3b1e9fd27045340e

Do you need more information?

CVSS v4

Base Score:

8.3

Attack Vector

LOCAL

Attack Complexity

LOW

Attack Requirements

NONE

Privileges Required

LOW

User Interaction

NONE

Vulnerable System Confidentiality

LOW

Vulnerable System Integrity

HIGH

Vulnerable System Availability

LOW

Subsequent System Confidentiality

LOW

Subsequent System Integrity

HIGH

Subsequent System Availability

LOW

CVSS v3

Base Score:

7.9

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality

LOW

Integrity

HIGH

Availability

LOW

CVSS v2

Base Score:

3.6

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

Weakness Type (CWE)

Out-of-bounds Read

CWE-125

EPSS

Base Score:

0.15

Products

Solutions

Resources

Company

Compare

Developer Tools