PatchSiren cyber security CVE debrief
CVE-2026-14789 radareorg CVE debrief
A stack-based buffer overflow vulnerability was detected in radareorg radare2 up to 6.1.6, affecting the Memory64ListStream Parser in the file libr/bin/format/mdmp/mdmp.c. The vulnerability requires a local approach and has a CVSS score of 1.9, classified as LOW severity. The exploit is public, and a patch is available. Users of radare2 version 6.1.6 or earlier should be aware of this vulnerability and take steps to mitigate it. The vulnerability is caused by a stack-based buffer overflow in the Memory64ListStream Parser.
- Vendor
- radareorg
- Product
- radare2
- CVSS
- LOW 1.9
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-07-06
- Original CVE updated
- 2026-07-09
- Advisory published
- 2026-07-06
- Advisory updated
- 2026-07-09
Who should care
Users of radare2 version 6.1.6 or earlier should be aware of this vulnerability and take steps to mitigate it. This includes operators, platform administrators, vulnerability management teams, and security teams who need to assess the impact of this vulnerability on their deployments and plan accordingly.
Technical summary
The vulnerability is caused by a stack-based buffer overflow in the Memory64ListStream Parser in the file libr/bin/format/mdmp/mdmp.c of radareorg radare2 up to 6.1.6. The attack requires a local approach and the exploit is now public. The patch is named 175d4addb68981331c85b10681c2161c38fb5762. Users should apply the patch or update radare2 to a version beyond 6.1.6. The vulnerability has a CVSS score of 1.9 and is classified as LOW severity.
Defensive priority
Low priority, as the vulnerability requires a local approach and has a low CVSS score.
Recommended defensive actions
- Apply the patch 175d4addb68981331c85b10681c2161c38fb5762 to address the vulnerability.
- Update radare2 to a version beyond 6.1.6.
- Monitor for and track any potential exploits or attacks.
- Review compensating controls for exposed systems while remediation is scheduled and verified.
- Check relevant monitoring, detection, and logs for exposed assets that need extra review.
- Track exceptions, retest remediated assets, and close the item only after evidence is documented.
- Confirm whether affected product deployments exist in managed environments and assign an owner for follow-up.
Evidence notes
The CVE record was published on 2026-07-06T03:16:29.220Z and last modified on 2026-07-09T15:09:39.300Z. The NVD entry is currently Analyzed. The vulnerability affects radareorg radare2 up to 6.1.6, specifically the Memory64ListStream Parser in the file libr/bin/format/mdmp/mdmp.c. The attack requires a local approach. The exploit is now public and may be used. The patch is named 175d4addb68981331c85b10681c2161c38fb5762. Users should verify their deployments and consider mitigation strategies.
Official resources
-
CVE-2026-14789 CVE record
CVE.org
-
CVE-2026-14789 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Patch
-
Source reference
[email protected] - Product
-
Source reference
[email protected] - Exploit, Issue Tracking
-
Mitigation or vendor reference
[email protected] - Third Party Advisory, VDB Entry
-
Mitigation or vendor reference
[email protected] - Third Party Advisory, VDB Entry
-
Mitigation or vendor reference
[email protected] - Third Party Advisory, VDB Entry
-
Source reference
[email protected] - Permissions Required, VDB Entry
AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-06T03:16:29.220Z and has not been modified since then. The NVD entry is currently Analyzed.