Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nasm netwide assembler 2.15 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2020-21528
A Segmentation Fault issue discovered in in ieee_segment function in outieee.c in nasm 2.14.03 and 2.15 allows remote malicious users to cause a denial of service via crafted assembly file.
Nasm Netwide Assembler 2.15
Nasm Netwide Assembler 2.14.03
4.3
CVSSv2
CVE-2018-1000886
nasm version 2.14.01rc5, 2.15 contains a Buffer Overflow vulnerability in asm/stdscan.c:130 that can result in Stack-overflow caused by triggering endless macro generation, crash the program. This attack appear to be exploitable via a crafted nasm input file.
Nasm Netwide Assembler 2.15
Nasm Netwide Assembler 2.14.01rc5
5.8
CVSSv2
CVE-2019-20352
In Netwide Assembler (NASM) 2.15rc0, a heap-based buffer over-read occurs (via a crafted .asm file) in set_text_free when called from expand_one_smacro in asm/preproc.c.
Nasm Netwide Assembler 2.15
NA
CVE-2020-21687
Buffer Overflow vulnerability in scan function in stdscan.c in nasm 2.15rc0 allows remote malicious users to cause a denial of service via crafted asm file.
Nasm Netwide Assembler 2.15
NA
CVE-2020-21685
Buffer Overflow vulnerability in hash_findi function in hashtbl.c in nasm 2.15rc0 allows remote malicious users to cause a denial of service via crafted asm file.
Nasm Netwide Assembler 2.15
4.3
CVSSv2
CVE-2020-24241
In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.
Nasm Netwide Assembler 2.15
4.3
CVSSv2
CVE-2020-24242
In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory.
Nasm Netwide Assembler 2.15
NA
CVE-2022-46457
NASM v2.16 exists to contain a segmentation violation in the component ieee_write_file at /output/outieee.c.
Nasm Netwide Assembler 2.16
NA
CVE-2020-18780
A Use After Free vulnerability in function new_Token in asm/preproc.c in nasm 2.14.02 allows malicious users to cause a denial of service via crafted nasm command.
Nasm Netwide Assembler 2.14.02
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started