Out-of-bounds Write

GTKWave 3.3.115 is vulnerable to Out-of-bounds Write. The vulnerability is caused due to a defect in VZT LZMARead dmem extraction functionality. An attacker can execute arbitrary code by specially crafted .vzt file when the victim opens the malicious file...

Cross site scripting

An out-of-bounds write vulnerability exists in the VZT LZMARead dmem extraction functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...

CVE-2023-37282

GTKWave 3.3.115 is affected by CVE-2023-37282 due to an out-of-bounds write in the VZT LZMA_Read dmem extraction functionality. A specially crafted .vzt file can lead to arbitrary code execution when opened by a user. Several connected advisories confirm GTKWave-related fixes, with upstream/packa...

CVE-2023-37282

An out-of-bounds write vulnerability exists in the VZT LZMARead dmem extraction functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...

GTKWave VZT LZMA_Read dmem extraction out-of-bounds write vulnerability

Talos Vulnerability Report TALOS-2023-1810 GTKWave VZT LZMARead dmem extraction out-of-bounds write vulnerability January 8, 2024 CVE Number CVE-2023-37282 SUMMARY An out-of-bounds write vulnerability exists in the VZT LZMARead dmem extraction functionality of GTKWave 3.3.115. A specially crafted...