CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

SUSE CVE•added 2024/01/10 2:41 a.m.•1 views

SUSE CVE-2023-37577

Multiple use-after-free vulnerabilities exist in the VCD getvartoken realloc functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...

7.8CVSS8AI score0.00135EPSS

Exploits1References3

Circl•added 2024/01/08 4:32 p.m.•1 views

CVE-2023-37577

creationtimestamp| type| source ---|---|--- 2024-01-08 16:32:00+00:00| seen| https://t.me/ctinow/164450...

7.8CVSS7.4AI score0.00135EPSS

Exploits1References1

CVE•added 2024/01/08 2:47 p.m.•97 views

CVE-2023-37577

CVE-2023-37577 covers multiple use-after-free vulnerabilities in GTKWave (GTKWave 3.3.115) affecting the VCD get_vartoken realloc path, specifically when triggered via the vcd2lxt2 conversion, enabling arbitrary code execution if a crafted .vcd file is opened. The impact is local with user intera...

7.8CVSS7.8AI score0.00135EPSS

Exploits1References3Affected Software1

Talos•added 2024/01/08 12:0 a.m.•27 views

GTKWave VCD get_vartoken realloc use-after-free vulnerabilities

Talos Vulnerability Report TALOS-2023-1806 GTKWave VCD getvartoken realloc use-after-free vulnerabilities January 8, 2024 CVE Number CVE-2023-37576,CVE-2023-37577,CVE-2023-37573,CVE-2023-37578,CVE-2023-37575,CVE-2023-37574 SUMMARY Multiple use-after-free vulnerabilities exist in the VCD getvartok...

7.8CVSS7.9AI score0.00154EPSS

Exploits6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by