5.5

CVE-2022-46457

Exploit

NASM v2.16 was discovered to contain a segmentation violation in the component ieee_write_file at /output/outieee.c.

Data is provided by the National Vulnerability Database (NVD)
NasmNetwide Assembler Version2.16 Updaterc1
NasmNetwide Assembler Version2.16 Updaterc10
NasmNetwide Assembler Version2.16 Updaterc11
NasmNetwide Assembler Version2.16 Updaterc2
NasmNetwide Assembler Version2.16 Updaterc3
NasmNetwide Assembler Version2.16 Updaterc4
NasmNetwide Assembler Version2.16 Updaterc5
NasmNetwide Assembler Version2.16 Updaterc6
NasmNetwide Assembler Version2.16 Updaterc7
NasmNetwide Assembler Version2.16 Updaterc8
NasmNetwide Assembler Version2.16 Updaterc9
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.06% 0.194
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

https://bugzilla.nasm.us/show_bug.cgi?id=3392809
Vendor Advisory
Exploit
Issue Tracking