No advisories yet.
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Mon, 06 Jul 2026 01:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | A security flaw has been discovered in radareorg radare2 up to 6.1.6. This impacts the function r_str_word_get0set of the file libr/util/str.c. The manipulation results in integer overflow. The attack must be initiated from a local position. The exploit has been released to the public and may be used for attacks. The patch is identified as 11ac224c0eb8d57830fccc99e1c1cd8e5d958813. It is best practice to apply a patch to resolve this issue. | |
| Title | radareorg radare2 str.c r_str_word_get0set integer overflow | |
| First Time appeared |
Radareorg
Radareorg radare2 |
|
| Weaknesses | CWE-189 CWE-190 |
|
| CPEs | cpe:2.3:a:radareorg:radare2:*:*:*:*:*:*:*:* | |
| Vendors & Products |
Radareorg
Radareorg radare2 |
|
| References |
|
|
| Metrics |
cvssV2_0
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: VulDB
Published:
Updated: 2026-07-06T01:00:10.542Z
Reserved: 2026-07-05T16:03:14.292Z
Link: CVE-2026-14786
No data.
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-06T03:15:03Z