Resource Consumption Vulnerability in Radare2 Mach-O File Parser
CVE-2026-4174

4.8MEDIUM

Key Information:

Vendor

Radare2

Status
Radare2
Vendor
CVE Published:
15 March 2026

Badges

๐Ÿ‘พ Exploit Exists๐ŸŸก Public PoC

What is CVE-2026-4174?

A resource consumption vulnerability has been identified in the Radare2 version 5.9.9, specifically within the Mach-O File Parser component. The issue arises from the function walk_exports_trie in the source file libr/bin/format/mach0/mach0.c, allowing manipulation that consumes system resources. The exploit can only be executed in local environments, making it imperative for users to upgrade to version 6.1.2, which addresses this vulnerability through patch 4371ae84c99c46b48cb21badbbef06b30757aba0. Although the exploit has been disclosed, its impact is still being debated among experts.

Affected Version(s)

Radare2 5.9.9

Radare2 6.1.2

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2026-4174 - Proof of Concept

References

https://vuldb.com/?id.351081
vdb-entrytechnical-description
https://vuldb.com/?ctiid.351081
signaturepermissions-required
https://vuldb.com/?submit.769799
third-party-advisory

CVSS V4

Score:
4.8
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

breakingbad (VulDB User)
.