PT-2026-25548 · Git+1 · Radare2

Breakingbad

Published

2026-03-15

Updated

2026-03-16

CVE-2026-4174

CVSS v3.1

3.3

Low

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions Radare2 versions prior to 6.1.2

Description A flaw exists in Radare2 related to resource consumption. This issue affects the walk exports trie function within the libr/bin/format/mach0/mach0.c file of the Mach-O File Parser component. The issue can be triggered locally and the exploit has been publicly disclosed. The code maintainer has indicated that the issue is not considered a Denial of Service (DoS).

Recommendations Upgrade to Radare2 version 6.1.2 or later.

Exploit

Fix

DoS

Resource Exhaustion

Improper Resource Release

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-404

Related Identifiers

CVE-2026-4174

Affected Products

Radare2

PT-2026-25548 · Git+1 · Radare2

CVE-2026-4174

Weakness Enumeration

Related Identifiers

Affected Products

References · 15