CVE-2023-38665
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Summary
CVE-2023-38665 is a vulnerability affecting nasm 2.16rc0 where a null pointer dereference in the function "ieee_write_file" can be exploited by attackers. This issue results in a denial of service (DoS) attack through crashing the targeted system. Attackers can trigger this vulnerability by sending crafted input to the affected software, making it essential for users to update to a patched version to mitigate the risk. The null pointer dereference flaw in nasm's "ieee_write_file" function poses a significant threat by providing an attack vector for DoS attacks against systems using this version of the software.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Netwide Assembler
Affected Vendors
- National Academy of Sports Medicine