CVE-2023-38665

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 22, 2023
Updated: Aug 26, 2023
CWE ID 476

Summary

CVE-2023-38665 is a vulnerability affecting nasm 2.16rc0 where a null pointer dereference in the function "ieee_write_file" can be exploited by attackers. This issue results in a denial of service (DoS) attack through crashing the targeted system. Attackers can trigger this vulnerability by sending crafted input to the affected software, making it essential for users to update to a patched version to mitigate the risk. The null pointer dereference flaw in nasm's "ieee_write_file" function poses a significant threat by providing an attack vector for DoS attacks against systems using this version of the software.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Netwide Assembler

Affected Vendors

  • National Academy of Sports Medicine