Lucene search
+L

38 matches found

UbuntuCve
UbuntuCve
added 2024/01/08 3:15 p.m.21 views

CVE-2023-37419

Multiple out-of-bounds write vulnerabilities exist in the VCD parsevaluechange portdump functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns t...

7.8CVSS7.2AI score0.00436EPSS
Exploits1References2
OSV
OSV
added 2024/01/08 3:15 p.m.1 views

UBUNTU-CVE-2023-37577

Multiple use-after-free vulnerabilities exist in the VCD getvartoken realloc functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...

7.8CVSS7.4AI score0.00403EPSS
Exploits1References3
Prion
Prion
added 2024/01/08 3:15 p.m.18 views

Command injection

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. A specially crafted wave file can lead to arbitrary command execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns decompression...

4.4CVSS7.8AI score0.01481EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/01/08 3:15 p.m.2 views

UBUNTU-CVE-2023-37922

Multiple arbitrary write vulnerabilities exist in the VCD sorted bsearch functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the arbitrary...

7.8CVSS7.5AI score0.00432EPSS
Exploits1References3
OSV
OSV
added 2024/01/08 3:15 p.m.5 views

UBUNTU-CVE-2023-37419

Multiple out-of-bounds write vulnerabilities exist in the VCD parsevaluechange portdump functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns t...

7.8CVSS7.5AI score0.00436EPSS
Exploits1References3
OSV
OSV
added 2024/01/08 3:15 p.m.4 views

UBUNTU-CVE-2023-37446

Multiple out-of-bounds read vulnerabilities exist in the VCD var definition section functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...

7.8CVSS7.5AI score0.00432EPSS
Exploits1References3
OSV
OSV
added 2024/01/08 3:15 p.m.4 views

UBUNTU-CVE-2023-35963

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. A specially crafted wave file can lead to arbitrary command execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns decompression...

7.8CVSS5.9AI score0.01481EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/01/08 2:47 p.m.2 views

CVE-2023-35963

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. A specially crafted wave file can lead to arbitrary command execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns decompression...

7.8CVSS8AI score0.01481EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/01/08 2:47 p.m.26 views

CVE-2023-35963

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. A specially crafted wave file can lead to arbitrary command execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns decompression...

7.8CVSS8.2AI score0.01481EPSS
Exploits1References2
CVE
CVE
added 2024/01/08 2:47 p.m.47 views

CVE-2023-35963

CVE-2023-35963 affects GTKWave (notably the waveform viewer) with multiple OS command injection flaws in the decompression code of the vcd2lxt2 utility when processing crafted wave files. Affected: GTKWave 3.3.115 (Debian/Ubuntu/Debian-LTS advisories cite upgrades to 3.3.118 or similar for bullse...

7.8CVSS7.9AI score0.01481EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2024/01/08 2:47 p.m.47 views

CVE-2023-35963

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. A specially crafted wave file can lead to arbitrary command execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns decompression...

7.8CVSS8.2AI score0.01481EPSS
Exploits1
Debian CVE
Debian CVE
added 2024/01/08 2:47 p.m.39 views

CVE-2023-37419

Multiple out-of-bounds write vulnerabilities exist in the VCD parsevaluechange portdump functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns t...

7.8CVSS8.3AI score0.00436EPSS
Exploits1
Cvelist
Cvelist
added 2024/01/08 2:47 p.m.34 views

CVE-2023-37446

Multiple out-of-bounds read vulnerabilities exist in the VCD var definition section functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...

7.8CVSS8.1AI score0.00432EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/01/08 2:47 p.m.31 views

CVE-2023-37577

Multiple use-after-free vulnerabilities exist in the VCD getvartoken realloc functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...

7.8CVSS8.1AI score0.00403EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2024/01/08 2:47 p.m.43 views

CVE-2023-37922

Multiple arbitrary write vulnerabilities exist in the VCD sorted bsearch functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the arbitrary...

7.8CVSS8.2AI score0.00432EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2024/01/08 12:0 a.m.1 views

PT-2024-12535 · Gtkwave · Gtkwave

Name of the Vulnerable Software and Affected Versions: GTKWave version 3.3.115 Description: The issue is related to multiple OS command injection vulnerabilities in the decompression functionality. A specially crafted wave file can lead to arbitrary command execution when opened by a victim. The...

7.8CVSS8.3AI score0.01493EPSS
Exploits82References131
Positive Technologies
Positive Technologies
added 2024/01/08 12:0 a.m.5 views

PT-2024-12663 · Gtkwave · Gtkwave

Name of the Vulnerable Software and Affected Versions: GTKWave version 3.3.115 Description: The issue is related to multiple arbitrary write vulnerabilities in the VCD sorted bsearch functionality. A specially crafted .vcd file can lead to arbitrary code execution when opened by a victim. This ca...

7.8CVSS8.2AI score0.01493EPSS
Exploits82References131
Positive Technologies
Positive Technologies
added 2024/01/08 12:0 a.m.5 views

PT-2024-12644 · Gtkwave · Gtkwave

Name of the Vulnerable Software and Affected Versions: GTKWave version 3.3.115 Description: The issue is related to multiple use-after-free vulnerabilities in the VCD get vartoken realloc functionality. These vulnerabilities can be triggered by a specially crafted .vcd file, potentially leading t...

7.8CVSS8.2AI score0.01493EPSS
Exploits82References131
Rows per page
Query Builder