65 matches found
EUVD-2023-41189
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-35963
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. A specially crafted wave file can lead to arbitrary...
Linux Distros Unpatched Vulnerability : CVE-2023-39316
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple integer overflow vulnerabilities exist in the LXT2 numdictentries functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrar...
Linux Distros Unpatched Vulnerability : CVE-2023-38621
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to...
GTKWave Incorrect Array Index Validation Vulnerability
GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A security vulnerability exists in GTKWave version 3.3.115, which can be exploited by an attacker to cause arbitrary code execution via a specially crafted fst file...
GTKWave Buffer Overflow (CNVD-2024-04840)
GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A buffer overflow vulnerability exists in GTKWave version 3.3.115. The vulnerability stems from a boundary error in the fstReaderIterBlocks2 chaintable parsing function when processing untrusted input, which can be exploited by ...
GTKWave out-of-bounds write vulnerability (CNVD-2024-37756)
GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. An out-of-bounds write vulnerability exists in GTKWave version 3.3.115, which can be exploited by an attacker to cause arbitrary code execution via a specially crafted fst file...
GTKWave out-of-bounds write vulnerability (CNVD-2024-36935)
GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. An out-of-bounds write vulnerability exists in GTKWave version 3.3.115, which can be exploited by an attacker to execute arbitrary code using a specially crafted .lxt2 file...
GTKWave integer overflow vulnerability (CNVD-2024-04844)
GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. An integer overflow vulnerability exists in GTKWave version 3.3.115, which can be exploited by an attacker to cause memory corruption via specially crafted .vzt files...
GTKWave OS Command Injection Vulnerability (CNVD-2024-39669)
GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. GTKWave version 3.3.115 suffers from an operating system command injection vulnerability that can be exploited by an attacker to cause arbitrary code execution via a specially crafted fst file...
GTKWave Code Issue Vulnerability
GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A code issue vulnerability exists in GTKWave version 3.3.115 that stems from incorrect array index validation. An attacker could exploit this vulnerability to cause arbitrary code execution via a specially crafted .evcd file...
GTKWave out-of-bounds write vulnerability (CNVD-2024-04857)
GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. An out-of-bounds write vulnerability exists in GTKWave version 3.3.115, which can be exploited by an attacker to cause arbitrary code execution via specially crafted .vcd files...
GTKWave integer overflow vulnerability (CNVD-2024-39035)
GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. An integer overflow vulnerability exists in GTKWave version 3.3.115. An attacker can exploit this vulnerability to cause arbitrary code execution via a specially crafted .lxt2 file...
GTKWave code execution vulnerability (CNVD-2024-37202)
GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A code execution vulnerability exists in GTKWave version 3.3.115, which can be exploited by an attacker to potentially cause arbitrary code execution via a specially crafted fst file...
SUSE CVE-2023-35964
Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. A specially crafted wave file can lead to arbitrary command execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns decompression...
DEBIAN-CVE-2023-38620
Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the intege...
DEBIAN-CVE-2023-37443
Multiple out-of-bounds read vulnerabilities exist in the VCD var definition section functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...
CVE-2023-37282
An out-of-bounds write vulnerability exists in the VZT LZMARead dmem extraction functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...
DEBIAN-CVE-2023-36746
Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 fstWritex len functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to memory corruption. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability...
UBUNTU-CVE-2023-39234
Multiple out-of-bounds write vulnerabilities exist in the VZT vztrdprocessblock autosort functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns...