PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-14789 radareorg CVE debrief

A stack-based buffer overflow vulnerability was detected in radareorg radare2 up to 6.1.6, affecting the Memory64ListStream Parser in the file libr/bin/format/mdmp/mdmp.c. The vulnerability requires a local approach and has a CVSS score of 1.9, classified as LOW severity. The exploit is public, and a patch is available. Users of radare2 version 6.1.6 or earlier should be aware of this vulnerability and take steps to mitigate it. The vulnerability is caused by a stack-based buffer overflow in the Memory64ListStream Parser.

Vendor
radareorg
Product
radare2
CVSS
LOW 1.9
CISA KEV
Not listed in stored evidence
Original CVE published
2026-07-06
Original CVE updated
2026-07-09
Advisory published
2026-07-06
Advisory updated
2026-07-09

Who should care

Users of radare2 version 6.1.6 or earlier should be aware of this vulnerability and take steps to mitigate it. This includes operators, platform administrators, vulnerability management teams, and security teams who need to assess the impact of this vulnerability on their deployments and plan accordingly.

Technical summary

The vulnerability is caused by a stack-based buffer overflow in the Memory64ListStream Parser in the file libr/bin/format/mdmp/mdmp.c of radareorg radare2 up to 6.1.6. The attack requires a local approach and the exploit is now public. The patch is named 175d4addb68981331c85b10681c2161c38fb5762. Users should apply the patch or update radare2 to a version beyond 6.1.6. The vulnerability has a CVSS score of 1.9 and is classified as LOW severity.

Defensive priority

Low priority, as the vulnerability requires a local approach and has a low CVSS score.

Recommended defensive actions

  • Apply the patch 175d4addb68981331c85b10681c2161c38fb5762 to address the vulnerability.
  • Update radare2 to a version beyond 6.1.6.
  • Monitor for and track any potential exploits or attacks.
  • Review compensating controls for exposed systems while remediation is scheduled and verified.
  • Check relevant monitoring, detection, and logs for exposed assets that need extra review.
  • Track exceptions, retest remediated assets, and close the item only after evidence is documented.
  • Confirm whether affected product deployments exist in managed environments and assign an owner for follow-up.

Evidence notes

The CVE record was published on 2026-07-06T03:16:29.220Z and last modified on 2026-07-09T15:09:39.300Z. The NVD entry is currently Analyzed. The vulnerability affects radareorg radare2 up to 6.1.6, specifically the Memory64ListStream Parser in the file libr/bin/format/mdmp/mdmp.c. The attack requires a local approach. The exploit is now public and may be used. The patch is named 175d4addb68981331c85b10681c2161c38fb5762. Users should verify their deployments and consider mitigation strategies.

Official resources

AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-06T03:16:29.220Z and has not been modified since then. The NVD entry is currently Analyzed.