Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

nasm netwide assembler 2.15 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2020-21528
A Segmentation Fault issue discovered in in ieee_segment function in outieee.c in nasm 2.14.03 and 2.15 allows remote malicious users to cause a denial of service via crafted assembly file.
Nasm Netwide Assembler 2.15Nasm Netwide Assembler 2.14.03
4.3
CVSSv2
CVE-2018-1000886
nasm version 2.14.01rc5, 2.15 contains a Buffer Overflow vulnerability in asm/stdscan.c:130 that can result in Stack-overflow caused by triggering endless macro generation, crash the program. This attack appear to be exploitable via a crafted nasm input file.
Nasm Netwide Assembler 2.15Nasm Netwide Assembler 2.14.01rc5
5.8
CVSSv2
CVE-2019-20352
In Netwide Assembler (NASM) 2.15rc0, a heap-based buffer over-read occurs (via a crafted .asm file) in set_text_free when called from expand_one_smacro in asm/preproc.c.
Nasm Netwide Assembler 2.15
NA
CVE-2020-21687
Buffer Overflow vulnerability in scan function in stdscan.c in nasm 2.15rc0 allows remote malicious users to cause a denial of service via crafted asm file.
Nasm Netwide Assembler 2.15
NA
CVE-2020-21685
Buffer Overflow vulnerability in hash_findi function in hashtbl.c in nasm 2.15rc0 allows remote malicious users to cause a denial of service via crafted asm file.
Nasm Netwide Assembler 2.15
4.3
CVSSv2
CVE-2020-24241
In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.
Nasm Netwide Assembler 2.15
4.3
CVSSv2
CVE-2020-24242
In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory.
Nasm Netwide Assembler 2.15
NA
CVE-2022-46457
NASM v2.16 exists to contain a segmentation violation in the component ieee_write_file at /output/outieee.c.
Nasm Netwide Assembler 2.16
NA
CVE-2020-18780
A Use After Free vulnerability in function new_Token in asm/preproc.c in nasm 2.14.02 allows malicious users to cause a denial of service via crafted nasm command.
Nasm Netwide Assembler 2.14.02
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook