Skip to main content

Unicorn Engine

6 CVEs product

Monthly

CVE-2022-29695 HIGH POC PATCH This Week

Unicorn Engine v2.0.0-rc7 contains memory leaks caused by an incomplete unicorn engine initialization. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Unicorn Engine
NVD GitHub
CVSS 3.1
7.5
EPSS
1.1%
CVE-2022-29694 HIGH POC PATCH This Week

Unicorn Engine v2.0.0-rc7 and below was discovered to contain a NULL pointer dereference via qemu_ram_free. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Null Pointer Dereference Unicorn Engine
NVD GitHub
CVSS 3.1
7.5
EPSS
1.8%
CVE-2022-29693 HIGH POC PATCH This Week

Unicorn Engine v2.0.0-rc7 and below was discovered to contain a memory leak via the function uc_close at /my/unicorn/uc.c. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Unicorn Engine
NVD GitHub
CVSS 3.1
7.5
EPSS
1.2%
CVE-2022-29692 HIGH POC This Week

Unicorn Engine v1.0.3 was discovered to contain a use-after-free vulnerability via the hook function. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Use After Free Information Disclosure Unicorn Engine
NVD GitHub
CVSS 3.1
7.8
EPSS
0.8%
CVE-2021-44078 PyPI HIGH PATCH This Week

An issue was discovered in split_region in uc.c in Unicorn Engine before 2.0.0-rc5. Rated high severity (CVSS 8.1), this vulnerability is no authentication required.

RCE Unicorn Engine
NVD GitHub
CVSS 3.1
8.1
EPSS
0.5%
CVE-2021-36979 MEDIUM PATCH This Month

Unicorn Engine 1.0.2 has an out-of-bounds write in tb_flush_armeb (called from cpu_arm_exec_armeb and tcg_cpu_exec_armeb). Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Buffer Overflow Memory Corruption Unicorn Engine Fedora
NVD GitHub
CVSS 3.1
5.5
EPSS
0.9%
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

Unicorn Engine v2.0.0-rc7 contains memory leaks caused by an incomplete unicorn engine initialization. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Unicorn Engine
NVD GitHub
EPSS 2% CVSS 7.5
HIGH POC PATCH This Week

Unicorn Engine v2.0.0-rc7 and below was discovered to contain a NULL pointer dereference via qemu_ram_free. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Denial Of Service Null Pointer Dereference Unicorn Engine
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC PATCH This Week

Unicorn Engine v2.0.0-rc7 and below was discovered to contain a memory leak via the function uc_close at /my/unicorn/uc.c. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Unicorn Engine
NVD GitHub
EPSS 1% CVSS 7.8
HIGH POC This Week

Unicorn Engine v1.0.3 was discovered to contain a use-after-free vulnerability via the hook function. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Memory Corruption Use After Free Information Disclosure +1
NVD GitHub
EPSS 1% CVSS 8.1
HIGH PATCH This Week

An issue was discovered in split_region in uc.c in Unicorn Engine before 2.0.0-rc5. Rated high severity (CVSS 8.1), this vulnerability is no authentication required.

RCE Unicorn Engine
NVD GitHub
EPSS 1% CVSS 5.5
MEDIUM PATCH This Month

Unicorn Engine 1.0.2 has an out-of-bounds write in tb_flush_armeb (called from cpu_arm_exec_armeb and tcg_cpu_exec_armeb). Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity.

Buffer Overflow Memory Corruption Unicorn Engine +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy