Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nasm netwide assembler 2.15 vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2020-21528
A Segmentation Fault issue discovered in in ieee_segment function in outieee.c in nasm 2.14.03 and 2.15 allows remote malicious users to cause a denial of service via crafted assembly file.
Nasm Netwide Assembler 2.15
Nasm Netwide Assembler 2.14.03
5.5
CVSSv3
CVE-2018-1000886
nasm version 2.14.01rc5, 2.15 contains a Buffer Overflow vulnerability in asm/stdscan.c:130 that can result in Stack-overflow caused by triggering endless macro generation, crash the program. This attack appear to be exploitable via a crafted nasm input file.
Nasm Netwide Assembler 2.15
Nasm Netwide Assembler 2.14.01rc5
7.1
CVSSv3
CVE-2019-20352
In Netwide Assembler (NASM) 2.15rc0, a heap-based buffer over-read occurs (via a crafted .asm file) in set_text_free when called from expand_one_smacro in asm/preproc.c.
Nasm Netwide Assembler 2.15
5.5
CVSSv3
CVE-2020-24241
In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.
Nasm Netwide Assembler 2.15
5.5
CVSSv3
CVE-2020-24242
In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory.
Nasm Netwide Assembler 2.15
5.5
CVSSv3
CVE-2020-21685
Buffer Overflow vulnerability in hash_findi function in hashtbl.c in nasm 2.15rc0 allows remote malicious users to cause a denial of service via crafted asm file.
Nasm Netwide Assembler 2.15
5.5
CVSSv3
CVE-2020-21687
Buffer Overflow vulnerability in scan function in stdscan.c in nasm 2.15rc0 allows remote malicious users to cause a denial of service via crafted asm file.
Nasm Netwide Assembler 2.15
5.5
CVSSv3
CVE-2022-46457
NASM v2.16 exists to contain a segmentation violation in the component ieee_write_file at /output/outieee.c.
Nasm Netwide Assembler 2.16
5.5
CVSSv3
CVE-2020-18780
A Use After Free vulnerability in function new_Token in asm/preproc.c in nasm 2.14.02 allows malicious users to cause a denial of service via crafted nasm command.
Nasm Netwide Assembler 2.14.02
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started