Vulnerabilities > Nasm > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-01-04 CVE-2022-46457 Unspecified vulnerability in Nasm Netwide Assembler 2.16
NASM v2.16 was discovered to contain a segmentation violation in the component ieee_write_file at /output/outieee.c.
local
low complexity
nasm
5.5
2022-10-03 CVE-2022-41420 Out-of-bounds Write vulnerability in Nasm Netwide Assembler 2.16
nasm v2.16 was discovered to contain a stack overflow in the Ndisasm component
local
low complexity
nasm CWE-787
5.5
2021-12-22 CVE-2021-45256 NULL Pointer Dereference vulnerability in Nasm Netwide Assembler 2.16
A Null Pointer Dereference vulnerability existfs in nasm 2.16rc0 via asm/preproc.c.
network
nasm CWE-476
4.3
2021-12-22 CVE-2021-45257 Infinite Loop vulnerability in Nasm Netwide Assembler 2.16
An infinite loop vulnerability exists in nasm 2.16rc0 via the gpaste_tokens function.
network
nasm CWE-835
4.3
2021-08-25 CVE-2020-18974 Classic Buffer Overflow vulnerability in Nasm Netwide Assembler
Buffer Overflow in Netwide Assembler (NASM) v2.15.xx allows attackers to cause a denial of service via 'crc64i' in the component 'nasmlib/crc64'.
network
nasm CWE-120
4.3
2020-08-25 CVE-2020-24242 Unspecified vulnerability in Nasm Netwide Assembler 2.15
In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory.
network
nasm
4.3
2020-08-25 CVE-2020-24241 Use After Free vulnerability in Nasm Netwide Assembler 2.15
In Netwide Assembler (NASM) 2.15rc10, there is heap use-after-free in saa_wbytes in nasmlib/saa.c.
network
nasm CWE-416
4.3
2020-01-06 CVE-2019-20352 Out-of-bounds Read vulnerability in Nasm Netwide Assembler 2.15
In Netwide Assembler (NASM) 2.15rc0, a heap-based buffer over-read occurs (via a crafted .asm file) in set_text_free when called from expand_one_smacro in asm/preproc.c.
network
nasm CWE-125
5.8
2020-01-04 CVE-2019-20334 Uncontrolled Recursion vulnerability in Nasm Netwide Assembler 2.14.02
In Netwide Assembler (NASM) 2.14.02, stack consumption occurs in expr# functions in asm/eval.c.
network
nasm CWE-674
4.3
2019-07-24 CVE-2019-14248 NULL Pointer Dereference vulnerability in Nasm Netwide Assembler
In libnasm.a in Netwide Assembler (NASM) 2.14.xx, asm/pragma.c allows a NULL pointer dereference in process_pragma, search_pragma_list, and nasm_set_limit when "%pragma limit" is mishandled.
network
nasm CWE-476
4.3