CVE-2026-14757

Severity CVSS v4.0:
LOW
Type:
CWE-189 Numeric Errors
Publication date:
05/07/2026
Last modified:
07/07/2026

Description

A vulnerability was determined in radareorg radare2 up to 6.1.6. This affects the function core_anal_bytes of the file libr/core/cmd_anal.inc. This manipulation causes integer overflow. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized. It is suggested to install a patch to address this issue.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:radare:radare2:*:*:*:*:*:*:*:* 6.1.0 (including) 6.1.8 (excluding)