Vulnerabilities > Yasm Project > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-01-03 CVE-2023-49554 Use After Free vulnerability in Yasm Project Yasm 1.3.0.86.G9Def
Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the do_directive function in the modules/preprocs/nasm/nasm-pp.c component.
local
low complexity
yasm-project CWE-416
5.5
5.5
2024-01-03 CVE-2023-49555 Unspecified vulnerability in Yasm Project Yasm 1.3.0.86.G9Def
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expand_smacro function in the modules/preprocs/nasm/nasm-pp.c component.
local
low complexity
yasm-project
5.5
5.5
2024-01-03 CVE-2023-49556 Unspecified vulnerability in Yasm Project Yasm 1.3.0.86.G9Def
Buffer Overflow vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expr_delete_term function in the libyasm/expr.c component.
local
low complexity
yasm-project
5.5
5.5
2024-01-03 CVE-2023-49557 Unspecified vulnerability in Yasm Project Yasm 1.3.0.86.G9Def
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the yasm_section_bcs_first function in the libyasm/section.c component.
local
low complexity
yasm-project
5.5
5.5
2024-01-03 CVE-2023-49558 Unspecified vulnerability in Yasm Project Yasm 1.3.0.86.G9Def
An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expand_mmac_params function in the modules/preprocs/nasm/nasm-pp.c component.
local
low complexity
yasm-project
5.5
5.5
2023-07-26 CVE-2023-37732 NULL Pointer Dereference vulnerability in Yasm Project Yasm 1.3.0.78.G4Dc8
Yasm v1.3.0.78 was found prone to NULL Pointer Dereference in /libyasm/intnum.c and /elf/elf.c, which allows the attacker to cause a denial of service via a crafted file.
local
low complexity
yasm-project CWE-476
5.5
5.5
2023-05-17 CVE-2023-31723 Unspecified vulnerability in Yasm Project Yasm 1.3.0.55.G101Bc
yasm 1.3.0.55.g101bc was discovered to contain a segmentation violation via the function expand_mmac_params at /nasm/nasm-pp.c.
local
low complexity
yasm-project
5.5
5.5
2023-05-17 CVE-2023-31725 Use After Free vulnerability in Yasm Project Yasm 1.3.0.55.G101Bc
yasm 1.3.0.55.g101bc was discovered to contain a heap-use-after-free via the function expand_mmac_params at yasm/modules/preprocs/nasm/nasm-pp.c.
local
low complexity
yasm-project CWE-416
5.5
5.5
2023-04-25 CVE-2023-30402 Out-of-bounds Write vulnerability in Yasm Project Yasm 1.3.0
YASM v1.3.0 was discovered to contain a heap overflow via the function handle_dot_label at /nasm/nasm-token.re.
local
low complexity
yasm-project CWE-787
5.5
5.5
2023-04-24 CVE-2023-29579 Out-of-bounds Write vulnerability in Yasm Project Yasm 1.3.0.55.G101Bc
yasm 1.3.0.55.g101bc was discovered to contain a stack overflow via the component yasm/yasm+0x43b466 in vsprintf.
local
low complexity
yasm-project CWE-787
5.5
5.5