Memory Corruption Vulnerability in Radare2's radiff2 Component
CVE-2025-5643

2LOW

Key Information:

Vendor

Radare2

Status
Radare2
Vendor
CVE Published:
5 June 2025

Badges

👾 Exploit Exists🟡 Public PoC

What is CVE-2025-5643?

A vulnerability has been identified in Radare2 version 5.9.9, specifically within the radiff2 component's cons_stack_load function in the cons.c library. This issue arises from the manipulation of the experimental parameter -T, which can lead to memory corruption. Exploitation of this vulnerability is challenging and requires local access, making it less straightforward to exploit. While it has been disclosed, the actual risk posed by this vulnerability remains uncertain, particularly since the parameter in question is noted to be unstable and not a significant concern unless under specific conditions. It is advisable to apply the recommended patch (commit 5705d99cc1f23f36f9a84aab26d1724010b97798) to mitigate any potential risks associated with this vulnerability.

Affected Version(s)

Radare2 5.9.9

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2025-5643 - Proof of Concept

References

https://vuldb.com/?id.311131
vdb-entrytechnical-description
https://vuldb.com/?ctiid.311131
signaturepermissions-required
https://vuldb.com/?submit.586912
third-party-advisory

CVSS V4

Score:
2
Severity:
LOW
Confidentiality:
None
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
High
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

rootsec (VulDB User)
.
CVE-2025-5643 : Memory Corruption Vulnerability in Radare2's radiff2 Component