CVE-2026-6940

Name
CVE-2026-6940
Description
radare2 prior to 6.1.4 contains a path traversal vulnerability in project deletion that allows local attackers to recursively delete arbitrary directories by supplying absolute paths that escape the configured dir.projects root directory. Attackers can craft absolute paths to project marker files outside the project storage boundary to cause recursive deletion of attacker-chosen directories with permissions of the radare2 process, resulting in integrity and availability loss.
NVD Severity
unknown
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
disclosure@vulncheck.com https://github.com/radareorg/radare2/pull/25830
disclosure@vulncheck.com https://github.com/radareorg/radare2/pull/25830/commits
disclosure@vulncheck.com https://www.vulncheck.com/advisories/radare2-project-deletion-path-traversal-directory-deletion

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:radare:radare2:*:*:*:*:*:*:*:* radare2 >= None < 6.1.4

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
radare2 edge-community 6.1.2-r0 omni <omni+alpine@hack.org> possibly vulnerable
radare2 edge-community 6.0.8-r0 omni <omni+alpine@hack.org> possibly vulnerable
radare2 edge-community 6.0.7-r0 omni <omni+alpine@hack.org> possibly vulnerable
radare2 edge-community 6.0.4-r0 omni <omni+alpine@hack.org> possibly vulnerable
radare2 edge-community 5.9.8-r0 omni <omni+alpine@hack.org> possibly vulnerable
radare2 edge-community 5.8.2-r0 Valery Kartel <valery.kartel@gmail.com> possibly vulnerable
radare2 edge-community 5.8.0-r0 Valery Kartel <valery.kartel@gmail.com> possibly vulnerable
radare2 edge-community 5.7.2-r0 Valery Kartel <valery.kartel@gmail.com> possibly vulnerable
radare2 edge-community 5.7.0-r0 Valery Kartel <valery.kartel@gmail.com> possibly vulnerable
radare2 edge-community 5.6.8-r0 Valery Kartel <valery.kartel@gmail.com> possibly vulnerable
radare2 edge-community 5.6.6-r0 Valery Kartel <valery.kartel@gmail.com> possibly vulnerable
radare2 edge-community 5.6.4-r0 Valery Kartel <valery.kartel@gmail.com> possibly vulnerable
radare2 edge-community 5.6.2-r0 Valery Kartel <valery.kartel@gmail.com> possibly vulnerable
radare2 edge-community 5.6.0-r0 Valery Kartel <valery.kartel@gmail.com> possibly vulnerable
radare2 edge-community 5.5.4-r0 Valery Kartel <valery.kartel@gmail.com> possibly vulnerable
radare2 edge-community 5.5.2-r0 Valery Kartel <valery.kartel@gmail.com> possibly vulnerable
radare2 edge-community 5.4.0-r0 Valery Kartel <valery.kartel@gmail.com> possibly vulnerable
radare2 edge-community 5.3.1-r0 Valery Kartel <valery.kartel@gmail.com> possibly vulnerable
radare2 edge-community 4.5.1-r0 None possibly vulnerable
radare2 edge-community 4.5.0-r0 None possibly vulnerable
radare2 edge-community 4.4.0-r0 None possibly vulnerable
radare2 edge-community 4.0.0-r0 None possibly vulnerable
radare2 edge-community 3.9.0-r0 None possibly vulnerable
radare2 3.23-community 6.0.7-r0 omni <omni+alpine@hack.org> possibly vulnerable