News & Innovations

News and innovations published by German exhibitors

  back to overview

Security Advisory: Remote Command Execution in binwalk

A security vulnerability was discovered in ReFirm Labs' binwalk software. The issue is a path traversal vulnerability that affects versions 2.1.2b to 2.3.2. The vulnerability allows remote attackers to execute arbitrary code on systems where the software is installed. The target must open a malicious file using binwalk's extract mode for the exploit to be successful. No vendor advisory or fixed version has been released at the time of the advisory, but the vulnerability has been assigned CVE-2022-4510 and has a high CVSS score of 7.8. The path traversal was discovered by ONEKEY Research Lab.

Further reading

Exhibitor: ONEKEY GmbH


We only use functionally necessary cookies and the web analysis tool Matomo in order to optimally design and continuously improve our website for you. By continuing to use our website, you agree to this. Further information and an objection possibility can be found here: Data protection