Rizin is a UNIX-like reverse engineering framework and command-line toolset. `rizin.c` still had an old snippet of code which suffered a command injection due the usage of `rz_core_cmdf` to invoke the command `m` which was removed in v0.1.x. A malicious binary defining `bclass` (part of RzBinInfo) is executed if `rclass` (part of RzBinInfo) is set to `fs`; the vulnerability can be exploited by any bin format where `bclass` and `rclass` are user defined. This vulnerability is fixed in 0.7.4.
History

Mon, 23 Dec 2024 15:30:00 +0000

Type Values Removed Values Added
Description Rizin is a UNIX-like reverse engineering framework and command-line toolset. `rizin.c` still had an old snippet of code which suffered a command injection due the usage of `rz_core_cmdf` to invoke the command `m` which was removed in v0.1.x. A malicious binary defining `bclass` (part of RzBinInfo) is executed if `rclass` (part of RzBinInfo) is set to `fs`; the vulnerability can be exploited by any bin format where `bclass` and `rclass` are user defined. This vulnerability is fixed in 0.7.4.
Title Rizin has a command injection via RzBinInfo bclass due legacy code
Weaknesses CWE-78
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2024-12-23T15:17:50.587Z

Updated: 2024-12-23T15:17:50.587Z

Reserved: 2024-11-19T20:08:14.480Z

Link: CVE-2024-53256

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2024-12-23T16:15:06.797

Modified: 2024-12-23T16:15:06.797

Link: CVE-2024-53256

cve-icon Redhat

No data.