Vulnerability Details CVE-2023-23108
In crasm 1.8-3, invalid input validation, specific files passed to the command line application, can lead to a NULL pointer dereference in the function Xasc.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 32.9%
CVSS Severity
CVSS v3 Score 7.5
References
- https://github.com/WhatTheFuzz/crasm-fuzz/tree/a020ad6ad99a72ca373f7dd1aab3a61a7c87fd66/bug-null-pointer
- https://github.com/colinbourassa/crasm/pull/7
- https://github.com/WhatTheFuzz/crasm-fuzz/tree/a020ad6ad99a72ca373f7dd1aab3a61a7c87fd66/bug-null-pointer
- https://github.com/colinbourassa/crasm/pull/7
Products affected by CVE-2023-23108
-
cpe:2.3:a:crasm_project:crasm:1.8-3