Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netwide assembler vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2019-14248
In libnasm.a in Netwide Assembler (NASM) 2.14.xx, asm/pragma.c allows a NULL pointer dereference in process_pragma, search_pragma_list, and nasm_set_limit when "%pragma limit" is mishandled.
Nasm Netwide Assembler
5.5
CVSSv3
CVE-2019-6290
An infinite recursion issue exists in eval.c in Netwide Assembler (NASM) up to and including 2.14.02. There is a stack exhaustion problem resulting from infinite recursion in the functions expr, rexp, bexpr and cexpr in certain scenarios involving lots of '{' characters...
Nasm Netwide Assembler
5.5
CVSSv3
CVE-2019-6291
An issue exists in the function expr6 in eval.c in Netwide Assembler (NASM) up to and including 2.14.02. There is a stack exhaustion problem caused by the expr6 function making recursive calls to itself in certain scenarios involving lots of '!' or '+' or ...
Nasm Netwide Assembler
5.5
CVSSv3
CVE-2018-20535
There is a use-after-free at asm/preproc.c (function pp_getline) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service during a line-number increment attempt.
Nasm Netwide Assembler 2.14.0
5.5
CVSSv3
CVE-2018-20538
There is a use-after-free at asm/preproc.c (function pp_getline) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service during certain finishes tests.
Nasm Netwide Assembler 2.14.0
5.5
CVSSv3
CVE-2018-19755
There is an illegal address access at asm/preproc.c (function: is_mmacro) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service (out-of-bounds array access) because a certain conversion can result in a negative integer.
Nasm Netwide Assembler 12.14
9.8
CVSSv3
CVE-2020-24978
In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7.
Nasm Netwide Assembler 2.15.04
5.5
CVSSv3
CVE-2023-38665
Null pointer dereference in ieee_write_file in nasm 2.16rc0 allows malicious users to cause a denial of service (crash).
Nasm Netwide Assembler 2.16
5.5
CVSSv3
CVE-2023-38667
Stack-based buffer over-read in function disasm in nasm 2.16 allows malicious users to cause a denial of service.
Nasm Netwide Assembler 2.16
5.5
CVSSv3
CVE-2023-38668
Stack-based buffer over-read in disasm in nasm 2.16 allows malicious users to cause a denial of service (crash).
Nasm Netwide Assembler 2.16
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »