CVE-2026-22780

MEDIUM EPSS 7.6%
Published Feb 2, 20264mo ago · Modified Jun 17, 20261w ago
6.1 CVSS 3.1
Medium
Find Similar
Published Feb 2, 2026 4mo ago
Last Modified Jun 17, 2026 1w ago

Description

Rizin is a UNIX-like reverse engineering framework and command-line toolset. Prior to 0.8.2, a heap overflow can be exploited when a malicious mach0 file, having bogus entries for the dyld chained segments, is parsed by rizin. This vulnerability is fixed in 0.8.2.

CVSS Details

Base Score
6.1
Exploitability
1.8
Impact
4.2
Vector string
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required None
User Interaction Required
Scope Unchanged
Confidentiality None
Integrity Low
Availability High

Threat Intelligence

EPSS Exploit Probability
7.6% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-770

Affected Products 1

VendorProductVersionRange
rizinrizin* <0.8.2

References 6

  • github.com https://github.com/rizinorg/rizin/blob/6dd0dba9ff4dc706f549d0cdcd93856b49e59aa0/librz/bin/format/mach0/mach0_chained_fixups.c#L200
    Patch
  • github.com https://github.com/rizinorg/rizin/commit/41ea75d5b07d9b41b27ae80675cdda65f1b1c989
    Patch
  • github.com https://github.com/rizinorg/rizin/issues/5768
    Issue Tracking
  • github.com https://github.com/rizinorg/rizin/pull/5770
    Issue Tracking
  • github.com https://github.com/rizinorg/rizin/releases/tag/v0.8.2
    ProductRelease Notes
  • github.com https://github.com/rizinorg/rizin/security/advisories/GHSA-f3v7-xhmj-9cjj
    PatchVendor Advisory

Remediation

  • github.com https://github.com/rizinorg/rizin/blob/6dd0dba9ff4dc706f549d0cdcd93856b49e59aa0/librz/bin/format/mach0/mach0_chained_fixups.c#L200
    Patch
  • github.com https://github.com/rizinorg/rizin/commit/41ea75d5b07d9b41b27ae80675cdda65f1b1c989
    Patch
  • github.com https://github.com/rizinorg/rizin/security/advisories/GHSA-f3v7-xhmj-9cjj
    PatchVendor Advisory