Lucene search
K

9 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-35962

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. A specially crafted wave file can lead to arbitrary...

7.8CVSS7.3AI score0.01481EPSS
Exploits1References2
Veracode
Veracode
added 2024/04/01 10:6 p.m.20 views

OS Command Injection

gtkwave is vulnerable to OS Command Injection. The vulnerability is due to inadequate input validation in the decompression functionality in the vcd2vzt utility, allowing attackers to execute arbitrary commands by exploiting a specially crafted wave file...

7.8CVSS8AI score0.01481EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2024/01/08 3:15 p.m.15 views

CVE-2023-35962

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. A specially crafted wave file can lead to arbitrary command execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns decompression...

7.8CVSS8.1AI score0.01481EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/01/08 2:47 p.m.2 views

CVE-2023-35962

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. A specially crafted wave file can lead to arbitrary command execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns decompression...

7.8CVSS8.2AI score0.01481EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/01/08 2:47 p.m.24 views

CVE-2023-35962

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. A specially crafted wave file can lead to arbitrary command execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns decompression...

7.8CVSS8.2AI score0.01481EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2024/01/08 2:47 p.m.20 views

CVE-2023-35962

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. A specially crafted wave file can lead to arbitrary command execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns decompression...

7.8CVSS8.2AI score0.01481EPSS
Exploits1
Vulnrichment
Vulnrichment
added 2024/01/08 2:47 p.m.2 views

CVE-2023-37445

Multiple out-of-bounds read vulnerabilities exist in the VCD var definition section functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...

7.8CVSS8.1AI score0.00436EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/01/08 2:47 p.m.1 views

CVE-2023-37576

Multiple use-after-free vulnerabilities exist in the VCD getvartoken realloc functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...

7.8CVSS7.9AI score0.00403EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/01/08 2:47 p.m.1 views

CVE-2023-37921

Multiple arbitrary write vulnerabilities exist in the VCD sorted bsearch functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the arbitrary...

7.8CVSS8.1AI score0.00432EPSS
Exploits1References2
Rows per page
Query Builder