CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-11111

In Netwide Assembler (NASM) 2.14rc0, preproc.c allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.5%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

https://bugzilla.nasm.us/show_bug.cgi?id=3392415
https://security.gentoo.org/glsa/201903-19
https://usn.ubuntu.com/3694-1/
https://bugzilla.nasm.us/show_bug.cgi?id=3392415
https://security.gentoo.org/glsa/201903-19
https://usn.ubuntu.com/3694-1/

Products affected by CVE-2017-11111

Nasm » Netwide Assembler » Version: 2.14

cpe:2.3:a:nasm:netwide_assembler:2.14
Canonical » Ubuntu Linux » Version: 14.04

cpe:2.3:o:canonical:ubuntu_linux:14.04

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-11111

Products

Pricing

Contact Us