Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2018-1000667
HistorySep 06, 2018 - 5:29 p.m.

CVE-2018-1000667

2018-09-0617:29:01
CWE-119
[email protected]
web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

5.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.6%

JSON

NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption (crashed) of nasm when handling a crafted file due to function assemble_file(inname, depend_ptr) at asm/nasm.c:482. vulnerability in function assemble_file(inname, depend_ptr) at asm/nasm.c:482. that can result in aborting/crash nasm program. This attack appear to be exploitable via a specially crafted asm file…

Affected configurations

NVD
Node
nasmnetwide_assemblerRange2.14.0
OR
nasmnetwide_assemblerMatch2.14.0rc1
OR
nasmnetwide_assemblerMatch2.14.0rc10
OR
nasmnetwide_assemblerMatch2.14.0rc11
OR
nasmnetwide_assemblerMatch2.14.0rc12
OR
nasmnetwide_assemblerMatch2.14.0rc13
OR
nasmnetwide_assemblerMatch2.14.0rc14
OR
nasmnetwide_assemblerMatch2.14.0rc15
OR
nasmnetwide_assemblerMatch2.14.0rc2
OR
nasmnetwide_assemblerMatch2.14.0rc3
OR
nasmnetwide_assemblerMatch2.14.0rc4
OR
nasmnetwide_assemblerMatch2.14.0rc5
OR
nasmnetwide_assemblerMatch2.14.0rc6
OR
nasmnetwide_assemblerMatch2.14.0rc7
OR
nasmnetwide_assemblerMatch2.14.0rc8
OR
nasmnetwide_assemblerMatch2.14.0rc9

Related

cvelist 1
cve 1
redhatcve 1
debiancve 1
prion 1
ubuntucve 1
rosalinux 1
openvas 10
nessus 15
mageia 1
suse 2
cvelist
cvelist
CVE-2018-1000667
2018-09-06 17:00:00
cve
cve
CVE-2018-1000667
2018-09-06 17:29:01
redhatcve
redhatcve
CVE-2018-1000667
2018-09-06 21:48:58
debiancve
debiancve
CVE-2018-1000667
2018-09-06 17:29:01
prion
prion
Memory corruption
2018-09-06 17:29:00
ubuntucve
ubuntucve
CVE-2018-1000667
2018-09-06 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1926
2021-07-02 17:32:08
openvas
openvas
Huawei EulerOS: Security Advisory for nasm (EulerOS-SA-2021-1820)
2021-05-03 00:00:00
Huawei EulerOS: Security Advisory for nasm (EulerOS-SA-2020-2521)
2020-12-15 00:00:00
Huawei EulerOS: Security Advisory for nasm (EulerOS-SA-2020-2434)
2020-11-04 00:00:00
nessus
nessus
EulerOS 2.0 SP3 : nasm (EulerOS-SA-2021-1820)
2021-04-30 00:00:00
EulerOS 2.0 SP8 : nasm (EulerOS-SA-2020-2521)
2020-12-14 00:00:00
EulerOS 2.0 SP9 : nasm (EulerOS-SA-2020-2416)
2020-11-03 00:00:00
mageia
mageia
Updated nasm packages fix security vulnerability
2020-08-01 02:25:42
suse
suse
Security update for nasm (moderate)
2020-07-13 00:00:00
Security update for nasm (moderate)
2020-07-13 00:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

5.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

47.6%

JSON
Related for NVD:CVE-2018-1000667
cvelist1cve1redhatcve1debiancve1prion1ubuntucve1rosalinux1openvas10nessus15mageia1suse2