Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nasm netwide assembler vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2018-10254
Netwide Assembler (NASM) 2.13 has a stack-based buffer over-read in the disasm function of the disasm/disasm.c file. Remote attackers could leverage this vulnerability to cause a denial of service or possibly have unspecified other impact via a crafted ELF file.
Nasm Netwide Assembler 2.13
5.5
CVSSv3
CVE-2020-18780
A Use After Free vulnerability in function new_Token in asm/preproc.c in nasm 2.14.02 allows malicious users to cause a denial of service via crafted nasm command.
Nasm Netwide Assembler 2.14.02
5.5
CVSSv3
CVE-2020-24241
In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.
Nasm Netwide Assembler 2.15
NA
CVE-2004-1287
Buffer overflow in the error function in preproc.c for NASM 0.98.38 1.2 allows malicious users to execute arbitrary code via a crafted asm file, a different vulnerability than CVE-2005-1194.
Nasm Netwide Assembler 0.98.38
1 EDB exploit
5.5
CVSSv3
CVE-2021-33450
An issue exists in NASM version 2.16rc0. There are memory leaks in nasm_calloc() in nasmlib/alloc.c.
Nasm Netwide Assembler 2.16
5.5
CVSSv3
CVE-2021-33452
An issue exists in NASM version 2.16rc0. There are memory leaks in nasm_malloc() in nasmlib/alloc.c.
Nasm Netwide Assembler 2.16
7.8
CVSSv3
CVE-2018-8882
Netwide Assembler (NASM) 2.13.02rc2 has a stack-based buffer under-read in the function ieee_shr in asm/float.c via a large shift value.
Nasm Netwide Assembler 2.13.02
7.8
CVSSv3
CVE-2018-8883
Netwide Assembler (NASM) 2.13.02rc2 has a buffer over-read in the parse_line function in asm/parser.c via uncontrolled access to nasm_reg_flags.
Nasm Netwide Assembler 2.13.02
5.5
CVSSv3
CVE-2018-16999
Netwide Assembler (NASM) 2.14rc15 has an invalid memory write (segmentation fault) in expand_smacro in preproc.c, which allows malicious users to cause a denial of service via a crafted input file.
Nasm Netwide Assembler 12.14
5.5
CVSSv3
CVE-2022-41420
nasm v2.16 exists to contain a stack overflow in the Ndisasm component
Nasm Netwide Assembler 2.16
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »