13579And24680

#8547of 53,633
32.1Total CVSS
Vulnerabilities · 5
Medium
3
High
2
PT-2023-14456
5.5
2023-03-29
Nasm · Nasm · CVE-2022-44368
**Name of the Vulnerable Software and Affected Versions** NASM version 2.16 **Description** A null pointer dereference was discovered in the NASM component. **Recommendations** For NASM version 2.16, at the moment, there is no information about a newer version that contains a fix for this issue.
PT-2023-14457
5.5
2023-03-29
Nasm · Nasm · CVE-2022-44369
**Name of the Vulnerable Software and Affected Versions** NASM version 2.16 (development) **Description** The issue is related to a Null Pointer Dereference via the output/outaout.c file. **Recommendations** For NASM version 2.16 (development), at the moment, there is no information about a newer version that contains a fix for this vulnerability.
PT-2023-2366
7.8
2023-03-29
Unknown · Netwide Assembler · CVE-2022-44370
**Name of the Vulnerable Software and Affected Versions** Netwide Assembler (NASM) version 2.16 **Description** The issue is related to a heap buffer overflow in the `quote for pmake()` function of the Netwide Assembler (NASM). This overflow can occur due to the operation exceeding the memory buffer boundaries. Exploitation of this issue may allow an attacker to execute arbitrary code. **Recommendations** For Netwide Assembler (NASM) version 2.16, consider disabling the `quote for pmake()` function as a temporary workaround until a patch is available.
PT-2023-9324
5.5
2023-01-04
Unknown · Netwide Assembler · CVE-2022-46457
**Name of the Vulnerable Software and Affected Versions** Netwide Assembler (NASM) version 2.16 **Description** The issue is related to a segmentation violation in the `ieee write file` component at `/output/outieee.c` of the Netwide Assembler (NASM). This can lead to a denial of service. The problem is associated with a memory boundary read issue. **Recommendations** For Netwide Assembler (NASM) version 2.16, consider updating to a newer version that addresses the segmentation violation issue in the `ieee write file` component. As a temporary workaround, restrict the use of the `ieee write file` function to minimize the risk of exploitation.
PT-2023-9325
7.8
2023-01-04
Unknown · Netwide Assembler · CVE-2022-46456
**Name of the Vulnerable Software and Affected Versions** Netwide Assembler (NASM) version 2.16 **Description** The issue is related to a global buffer overflow in the dbgdbg typevalue component at /output/outdbg.c. This can potentially allow an attacker to disclose protected information or cause a denial of service. **Recommendations** For Netwide Assembler (NASM) version 2.16, consider updating to a newer version that contains a fix for this issue, as the current version is affected by a global buffer overflow vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.