Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

376 matches found

Vulnrichment
Vulnrichmentadded 2024/01/08 2:47 p.m.2 views

CVE-2023-35994

Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability...

7.8CVSS7.8AI score0.00414EPSS
Exploits1References2
CVE
CVEadded 2024/01/08 2:47 p.m.59 views

CVE-2023-35995

GTKWave 3.3.115 is affected by multiple vulnerabilities (CVE-2023-35995 among others) in the fstReaderIterBlocks2 tdelta indexing, which could allow arbitrary code execution when a user opens a crafted .fst file. The issues stem from improper array index validation and are triggered by reading ma...

7.8CVSS7.8AI score0.00414EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2024/01/08 2:47 p.m.22 views

CVE-2023-35994

Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability...

7.8CVSS8AI score0.00414EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/01/08 2:47 p.m.20 views

CVE-2023-35997

Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability...

7.8CVSS8.1AI score0.00414EPSS
Exploits1References2
CVE
CVEadded 2024/01/08 2:47 p.m.43 views

CVE-2023-35997

GTKWave (gtkwave) is affected by CVE-2023-35997 in the fstReaderIterBlocks2 tdelta path, with arbitrary code execution when a user opens a crafted .fst file. The vulnerability occurs during tdelta indexing when signal_lens is 2 or more. Debian/DSA-5653 (and related advisories) indicate fixed vers...

7.8CVSS7.8AI score0.00414EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2024/01/08 2:47 p.m.20 views

CVE-2023-35995

Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability...

7.8CVSS8AI score0.00414EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/01/08 2:47 p.m.16 views

CVE-2023-35996

Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability...

7.8CVSS8AI score0.00414EPSS
Exploits1References2
CVE
CVEadded 2024/01/08 2:47 p.m.41 views

CVE-2023-35996

CVE-2023-35996 affects GTKWave, specifically the fstReaderIterBlocks2 tdelta indexing when signal_lens is 0 in the GTKWave 3.3.115 release. Multiple improper array index validations can allow arbitrary code execution if a user opens a crafted .fst file. Impact is local with high severity (CVSS 3....

7.8CVSS7.8AI score0.00414EPSS
Exploits1References3Affected Software1
CVE
CVEadded 2024/01/08 2:47 p.m.43 views

CVE-2023-35994

GTKWave 3.3.115 is affected by multiple vulnerabilities in the fstReaderIterBlocks2 tdelta initialization that могут allow arbitrary code execution when opening a crafted .fst file. Root cause: improper array index validation in tdelta init. Impact: potential code execution with local access and ...

7.8CVSS7.8AI score0.00414EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVEadded 2024/01/08 2:47 p.m.25 views

CVE-2023-35997

Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability...

7.8CVSS8AI score0.00414EPSS
Exploits1
Debian CVE
Debian CVEadded 2024/01/08 2:47 p.m.20 views

CVE-2023-35995

Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability...

7.8CVSS8AI score0.00414EPSS
Exploits1
Debian CVE
Debian CVEadded 2024/01/08 2:47 p.m.21 views

CVE-2023-35994

Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability...

7.8CVSS8AI score0.00414EPSS
Exploits1
Debian CVE
Debian CVEadded 2024/01/08 2:47 p.m.18 views

CVE-2023-34087

An improper array index validation vulnerability exists in the EVCD var len parsing functionality of GTKWave 3.3.115. A specially crafted .evcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...

7.8CVSS7.8AI score0.00397EPSS
Exploits1
CNNVD
CNNVDadded 2024/01/08 12:0 a.m.4 views

GTKWave 安全漏洞

GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A code issue vulnerability exists in GTKWave version 3.3.115 that stems from incorrect array index validation. An attacker could exploit this vulnerability to cause arbitrary code execution via a specially crafted .evcd file...

7.8CVSS7.7AI score0.00397EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2024/01/08 12:0 a.m.3 views

PT-2024-2951 · Gtkwave · Gtkwave

Name of the Vulnerable Software and Affected Versions: GTKWave version 3.3.115 Description: The issue is related to an improper array index validation vulnerability in the EVCD var len parsing functionality. This can lead to arbitrary code execution when a victim opens a specially crafted .evcd...

7.8CVSS8.3AI score0.01481EPSS
Exploits82References137
OSV
OSVadded 2023/12/22 3:33 p.m.2 views

SUSE-SU-2023:4965-1 Security update for ppp

This update for ppp fixes the following issues: - CVE-2022-4603: Fixed improper validation of array index of the component pppdump bsc1218251...

6.5CVSS6.5AI score0.00821EPSS
Exploits0References3
OSV
OSVadded 2023/11/26 11:15 p.m.2 views

UBUNTU-CVE-2023-6298

A vulnerability classified as problematic was found in Apryse iText 8.0.2. This vulnerability affects the function main of the file PdfDocument.java. The manipulation leads to improper validation of array index. The attack can be initiated remotely. The exploit has been disclosed to the public an...

6.5CVSS4.8AI score0.01101EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2023/11/26 12:0 a.m.3 views

PT-2023-32598 · Apryse · Apryse Itext

Name of the Vulnerable Software and Affected Versions: Apryse iText version 8.0.2 Description: A vulnerability was found in the function main of the file PdfDocument.java, which affects the improper validation of array index. The attack can be initiated remotely. The real existence of this...

6.5CVSS5.4AI score0.01101EPSS
Exploits1References13
IBM Security Bulletins
IBM Security Bulletinsadded 2023/11/16 9:32 p.m.37 views

Security Bulletin: IBM Storage Fusion may be vulnerable to Denial of Service via use of openshift/machine-api-operator, openshift/machine-config-operator (CVE-2020-28851, CVE-2020-28852, CVE-2021-44716)

Summary OpenShift's machine-api-operator and machine-config-operator are used by IBM Storage Fusion to interact with the OpenShift platform, operators, and custom resource definitions. Vulnerabilities in these libraries include an improper validation of array index and possible uncontrolled...

7.5CVSS7.7AI score0.03958EPSS
Exploits2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2023/10/19 6:16 a.m.2 views

Multiple vulnerabilities in JustSystems products

Overview Multiple products provided by JustSystems Corporation contain multiple vulnerabilities listed below. Use after free CWE-416 - CVE-2023-34366 Integer overflow CWE-190 - CVE-2023-38127 Access of resource using incompatible type Type confusion CWE-843 - CVE-2023-38128 Improper validation of...

7.8CVSS7.1AI score0.00678EPSS
Exploits4References12
Rows per page
Query Builder