Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Cvelist
Cvelistadded 2024/01/08 2:47 p.m.13 views

CVE-2023-35955

Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 VCDATA parsing functionality of GTKWave 3.3.115. A specially-crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerabili...

7.8CVSS8.2AI score0.00059EPSS
Exploits1References2
Debian CVE
Debian CVEadded 2024/01/08 2:47 p.m.23 views

CVE-2023-35955

Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 VCDATA parsing functionality of GTKWave 3.3.115. A specially-crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerabili...

7.8CVSS8.2AI score0.00059EPSS
Exploits1
CVE
CVEadded 2024/01/08 2:47 p.m.148 views

CVE-2023-35955

Summary (CVE-2023-35955) : GTKWave, a waveform viewer, contains multiple heap-based buffer overflow vulnerabilities in the fstReaderIterBlocks2 VCDATA parsing path. The flaws are triggered by parsing a malformed .fst file, potentially allowing arbitrary code execution via the LZ4_decompress_safe_...

7.8CVSS7.9AI score0.00059EPSS
Exploits1References3Affected Software1
OSV
OSVadded 2022/04/24 9:6 p.m.9 views

GSD-2022-1001350 lz4: fix LZ4_decompress_safe_partial read out of bound

lz4: fix LZ4decompresssafepartial read out of bound This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.20 by commit...

7.1AI score
Exploits0
OSV
OSVadded 2022/04/24 8:38 p.m.6 views

GSD-2022-1001005 lz4: fix LZ4_decompress_safe_partial read out of bound

lz4: fix LZ4decompresssafepartial read out of bound This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.3 by commit...

7.1AI score
Exploits0
ossfuzz
ossfuzzadded 2020/01/06 9:40 a.m.17 views

ots:ots-fuzzer: Heap-buffer-overflow in LZ4_decompress_safe_partial

Project: https://github.com/khaledhosny/ots.git Detailed Report: https://oss-fuzz.com/testcase?key=5662681298370560 Project: ots Fuzzing Engine: libFuzzer Fuzz Target: ots-fuzzer Job Type: libfuzzerasanots Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x6180000007d0...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzzadded 2019/09/21 5:57 a.m.13 views

ots:ots-fuzzer: Heap-buffer-overflow in LZ4_decompress_safe_partial

Detailed Report: https://oss-fuzz.com/testcase?key=5690734920859648 Project: ots Fuzzing Engine: afl Fuzz Target: ots-fuzzer Job Type: aflasanots Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x6190000009e0 Crash State: LZ4decompresssafepartial ots::OpenTypeSILF::Parse...

6.8AI score
Exploits0Affected Software1
Rows per page
Query Builder