CVE-2026-14787: Integer Overflow in radareorg radare2
An integer overflow vulnerability exists in radareorg radare2 versions 6.1.0 through 6.1.6 in the cmd_print function of the pb Print Command Handler component. The issue requires local access to exploit and has a medium severity rating. A public exploit is available. A patch has been recommended but no official remediation level or patch link is provided.
AI Analysis
Technical Summary
CVE-2026-14787 is an integer overflow vulnerability affecting the cmd_print function in the libr/core/cmd_print.inc file of radareorg radare2 up to version 6.1.6. The vulnerability can be triggered by local users and may lead to unexpected behavior due to integer overflow. Although an exploit is publicly available, the CVSS score of 4.8 indicates a medium severity impact. The vendor has recommended applying a patch identified by commit 2b6265476c75567006b0fcbb749f4ae7b189c5df, but no official patch or advisory details are provided in the input data.
Potential Impact
The vulnerability allows a local attacker to cause an integer overflow in the cmd_print function, potentially leading to incorrect program behavior or crashes. The medium CVSS score reflects limited impact and complexity, with no requirement for user interaction and low privileges needed. No evidence of exploitation in the wild is reported.
Mitigation Recommendations
Apply the patch identified by commit 2b6265476c75567006b0fcbb749f4ae7b189c5df as recommended by the vendor. Since no official patch or advisory is provided, verify patch availability and applicability from the vendor or project repository. Until patched, restrict local access to trusted users only.
CVE-2026-14787: Integer Overflow in radareorg radare2
Description
An integer overflow vulnerability exists in radareorg radare2 versions 6.1.0 through 6.1.6 in the cmd_print function of the pb Print Command Handler component. The issue requires local access to exploit and has a medium severity rating. A public exploit is available. A patch has been recommended but no official remediation level or patch link is provided.
CVSS v4.0
Score 4.8medium
Affected software
pkg:github/radareorg/radare2cpe:2.3:a:radareorg:radare2:*:*:*:*:*:*:*:*Run on your own infrastructure? Check whether these packages are installed with threat-finder — our free open-source scanner.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-14787 is an integer overflow vulnerability affecting the cmd_print function in the libr/core/cmd_print.inc file of radareorg radare2 up to version 6.1.6. The vulnerability can be triggered by local users and may lead to unexpected behavior due to integer overflow. Although an exploit is publicly available, the CVSS score of 4.8 indicates a medium severity impact. The vendor has recommended applying a patch identified by commit 2b6265476c75567006b0fcbb749f4ae7b189c5df, but no official patch or advisory details are provided in the input data.
Potential Impact
The vulnerability allows a local attacker to cause an integer overflow in the cmd_print function, potentially leading to incorrect program behavior or crashes. The medium CVSS score reflects limited impact and complexity, with no requirement for user interaction and low privileges needed. No evidence of exploitation in the wild is reported.
Mitigation Recommendations
Apply the patch identified by commit 2b6265476c75567006b0fcbb749f4ae7b189c5df as recommended by the vendor. Since no official patch or advisory is provided, verify patch availability and applicability from the vendor or project repository. Until patched, restrict local access to trusted users only.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2026-07-05T16:03:16.568Z
- Cvss Version
- 4.0
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a4b0a3227e9c7971969ea42
Added to database: 07/06/2026, 01:51:46 UTC
Last enriched: 07/06/2026, 02:06:39 UTC
Last updated: 07/06/2026, 02:46:21 UTC
Views: 4
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.