Improper Validation of Array Index
CVE-2022-1237
Summary
Improper Validation of Array Index in radare2 prior to 5.6.8. This vulnerability is heap overflow and may be exploitable.
- LOW
- LOCAL
- HIGH
- UNCHANGED
- REQUIRED
- NONE
- HIGH
- HIGH
CWE-129 - Improper Validation of Array Index
The product uses untrusted input when calculating or using an array index, but the product does not validate or incorrectly validates the index to ensure the index references a valid position within the array.
References
Advisory Timeline
- Published