Lucene search
HistoryJan 03, 2024 - 12:15 a.m.
CVE-2023-49554
use after free
yasm
remote attacker
denial of service
do_directive function
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
29.4%
Use After Free vulnerability in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the do_directive function in the modules/preprocs/nasm/nasm-pp.c component.
Affected configurations
Node
yasm_projectyasmMatch1.3.0.86.g9def
| Vendor | Product | Version | CPE |
|---|---|---|---|
| yasm_project | yasm | 1.3.0.86.g9def | cpe:2.3:a:yasm_project:yasm:1.3.0.86.g9def:*:*:*:*:*:*:* |
References
Related
prion
prion
Design/Logic Flaw
2024-01-03 00:15:00
ubuntucve
ubuntucve
CVE-2023-49554
2024-01-03 00:00:00
osv
osv
CVE-2023-49554
2024-01-03 00:15:08
debiancve
debiancve
CVE-2023-49554
2024-01-03 00:15:08
redhatcve
redhatcve
CVE-2023-49554
2024-01-24 20:56:14
cvelist
cvelist
CVE-2023-49554
2024-01-02 00:00:00
cve
cve
CVE-2023-49554
2024-01-03 00:15:08
redos
redos
ROS-20240409-09
2024-04-09 00:00:00
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
29.4%
Related for NVD:CVE-2023-49554