CVE-2020-21686

Опубликовано: 22 авг. 2023

Источник: nvd

CVSS3: 5.5

EPSS Низкий

Описание

A stack-use-after-scope issue discovered in expand_mmac_params function in preproc.c in nasm before 2.15.04 allows remote attackers to cause a denial of service via crafted asm file.

Ссылки

https://bugzilla.nasm.us/show_bug.cgi?id=3392643
Exploit
Issue Tracking
Vendor Advisory
https://bugzilla.nasm.us/show_bug.cgi?id=3392643
Exploit
Issue Tracking
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:nasm:netwide_assembler:*:*:*:*:*:*:*:*

Версия до 2.15.04 (исключая)

EPSS

Процентиль: 39%

0.00175

Низкий

5.5 Medium

CVSS3

Дефекты

NVD-CWE-Other

CWE-562

Связанные уязвимости

CVE-2020-21686

CVSS3: 5.5

ubuntu

больше 2 лет назад

A stack-use-after-scope issue discovered in expand_mmac_params function in preproc.c in nasm before 2.15.04 allows remote attackers to cause a denial of service via crafted asm file.

CVE-2020-21686

CVSS3: 5.5

redhat

около 6 лет назад

A stack-use-after-scope issue discovered in expand_mmac_params function in preproc.c in nasm before 2.15.04 allows remote attackers to cause a denial of service via crafted asm file.

CVE-2020-21686

CVSS3: 5.5

debian

больше 2 лет назад

A stack-use-after-scope issue discovered in expand_mmac_params functio ...

GHSA-f5w2-2h32-hmg6

CVSS3: 5.5

github

больше 2 лет назад

A stack-use-after-scope issue discovered in expand_mmac_params function in preproc.c in nasm before 2.15.04 allows remote attackers to cause a denial of service via crafted asm file.

EPSS

Процентиль: 39%

0.00175

Низкий

5.5 Medium

CVSS3

Дефекты

NVD-CWE-Other

CWE-562