Lucene search
K

8 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2023-38649

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple out-of-bounds write vulnerabilities exist in the VZT vztrdgetfacname decompression functionality of GTKWave 3.3.115. A specially crafted .vzt file can...

7.8CVSS7.4AI score0.00432EPSS
Exploits1References2
Veracode
Veracode
added 2024/04/03 2:32 p.m.22 views

Out-of-bounds Write

gtkwave is vulnerable to Out-of-bounds Write. The vulnerabilities stem from flaws in the VZT vztrdgetfacname decompression functionality in .vzt file, allowing arbitrary code execution via a specially crafted file...

7.8CVSS8AI score0.00432EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2024/01/08 2:47 p.m.51 views

CVE-2023-38648

GTKWave 3.3.115 contains multiple out-of-bounds write vulnerabilities in the vzt_rd_get_facname decompression path. A crafted .vzt file can lead to arbitrary code execution when opened by a user. Affected component: GTKWave, version 3.3.115 (Windows/Linux packaging observed in Debian/Ubuntu advis...

7.8CVSS8AI score0.00432EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2024/01/08 2:47 p.m.63 views

CVE-2023-38649

GTKWave: Multiple out-of-bounds write vulnerabilities in vz t_rd_get_facname decompression in GTKWave 3.3.115 can lead to arbitrary code execution when opening a crafted .vzt file. Debian security advisories show fixes upgrading to 3.3.118 (bullseye) or 3.3.118-0.1~deb12u1 (bookworm); i.e., upgra...

7.8CVSS8AI score0.00432EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/01/08 2:47 p.m.19 views

CVE-2023-38649

Multiple out-of-bounds write vulnerabilities exist in the VZT vztrdgetfacname decompression functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concer...

7.8CVSS8.1AI score0.00432EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2024/01/08 2:47 p.m.20 views

CVE-2023-38649

Multiple out-of-bounds write vulnerabilities exist in the VZT vztrdgetfacname decompression functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concer...

7.8CVSS8.3AI score0.00432EPSS
Exploits1
CNNVD
CNNVD
added 2024/01/08 12:0 a.m.5 views

GTKWave 安全漏洞

GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. An out-of-bounds write vulnerability exists in GTKWave version 3.3.115. The vulnerability stems from an out-of-bounds write to the VZT vztrdgetfacname decompression function, which can be exploited by an attacker to cause...

7.8CVSS7.9AI score0.00432EPSS
Exploits1References2
Talos
Talos
added 2024/01/08 12:0 a.m.31 views

GTKWave VZT vzt_rd_get_facname decompression out-of-bounds write vulnerabilities

Talos Vulnerability Report TALOS-2023-1813 GTKWave VZT vztrdgetfacname decompression out-of-bounds write vulnerabilities January 8, 2024 CVE Number CVE-2023-38649,CVE-2023-38648 SUMMARY Multiple out-of-bounds write vulnerabilities exist in the VZT vztrdgetfacname decompression functionality of...

7.8CVSS7.9AI score0.00432EPSS
Exploits2
Rows per page
Query Builder