Known Vulnerabilities for products from NASM
Listed below are 20 of the newest known vulnerabilities associated with the vendor "NASM".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-6069 json | NASM’s disasm() function contains a stack based buffer overflow when formatting disassembly output, allowing an attacker tr... | Not Provided | 2026-04-10 | 2026-04-16 |
| CVE-2026-6068 json | NASM contains a heap use after free vulnerability in response file (-@) processing where a dangling pointer to freed memory i... | Not Provided | 2026-04-10 | 2026-04-16 |
| CVE-2026-6067 json | A heap buffer overflow vulnerability exists in the Netwide Assembler (NASM) due to a lack of bounds checking in the obj_direc... | Not Provided | 2026-04-10 | 2026-04-16 |
| CVE-2023-38668 json | Stack-based buffer over-read in disasm in nasm 2.16 allows attackers to cause a denial of service (crash). | 5.5 - MEDIUM | 2023-08-22 | 2023-08-28 |
| CVE-2023-38667 json | Stack-based buffer over-read in function disasm in nasm 2.16 allows attackers to cause a denial of service. | 5.5 - MEDIUM | 2023-08-22 | 2023-08-28 |
| CVE-2023-38665 json | Null pointer dereference in ieee_write_file in nasm 2.16rc0 allows attackers to cause a denial of service (crash). | 5.5 - MEDIUM | 2023-08-22 | 2023-08-26 |
| CVE-2023-31722 json | There exists a heap buffer overflow in nasm 2.16.02rc1 (GitHub commit: b952891). | 7.8 - HIGH | 2023-05-17 | 2023-05-25 |
| CVE-2022-46457 json | NASM v2.16 was discovered to contain a segmentation violation in the component ieee_write_file at /output/outieee.c. | 5.5 - MEDIUM | 2023-01-04 | 2023-02-09 |
| CVE-2022-46456 json | NASM v2.16 was discovered to contain a global buffer overflow in the component dbgdbg_typevalue at /output/outdbg.c. | 6.1 - MEDIUM | 2023-01-04 | 2023-01-18 |
| CVE-2022-44370 json | NASM v2.16 was discovered to contain a heap buffer overflow in the component quote_for_pmake() asm/nasm.c:856 | 7.8 - HIGH | 2023-03-29 | 2023-12-22 |
| CVE-2022-44369 json | NASM 2.16 (development) is vulnerable to 476: Null Pointer Dereference via output/outaout.c. | 5.5 - MEDIUM | 2023-03-29 | 2023-04-05 |
| CVE-2022-44368 json | NASM v2.16 was discovered to contain a null pointer deference in the NASM component | 5.5 - MEDIUM | 2023-03-29 | 2023-04-05 |
| CVE-2022-41420 json | nasm v2.16 was discovered to contain a stack overflow in the Ndisasm component | 5.5 - MEDIUM | 2022-10-03 | 2022-10-05 |
| CVE-2022-29654 json | Buffer overflow vulnerability in quote_for_pmake in asm/nasm.c in nasm before 2.15.05 allows attackers to cause a denial of s... | 5.5 - MEDIUM | 2023-08-22 | 2023-08-25 |
| CVE-2021-45257 json | An infinite loop vulnerability exists in nasm 2.16rc0 via the gpaste_tokens function. | 5.5 - MEDIUM | 2021-12-22 | 2022-01-10 |
| CVE-2021-45256 json | A Null Pointer Dereference vulnerability existfs in nasm 2.16rc0 via asm/preproc.c. | 5.5 - MEDIUM | 2021-12-22 | 2022-01-10 |
| CVE-2021-33452 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.5 - MEDIUM | 2022-07-26 | 2022-08-02 |
| CVE-2021-33450 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.5 - MEDIUM | 2022-07-26 | 2022-08-02 |
| CVE-2020-24978 json | In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84a... | 9.8 - CRITICAL | 2020-09-04 | 2022-09-02 |
| CVE-2020-24242 json | In Netwide Assembler (NASM) 2.15rc10, SEGV can be triggered in tok_text in asm/preproc.c by accessing READ memory. | 5.5 - MEDIUM | 2020-08-25 | 2020-09-01 |
Known software with vulnerabilities from NASM
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Nasm | Nasm | - |
| Application | Nasm | Netwide Assembler | - |
| Application | Nasm | Netwide Assmembler | 2.14 |
| Application | Nasm | Network Assembler | 2.15.04 |