PT-2026-31918 · Nasm · Nasm
Published
2026-04-10
·
Updated
2026-05-26
·
CVE-2026-6068
CVSS v3.1
9.6
Critical
| Vector | AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
NASM (affected versions not specified)
Description
A heap use after free issue exists during response file (-@) processing. A dangling pointer to freed memory is stored in the global
depend file and subsequently dereferenced because the response-file buffer is freed before the pointer is used. This can lead to data corruption, unexpected behavior, or remote code execution.Exploit
Fix
RCE
Use After Free
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Nasm