Lucene search
K

69 matches found

Vulnrichment
Vulnrichment
added 2024/07/22 8:50 p.m.10 views

CVE-2024-6794 Deserialization of Untrusted Data in NI VeriStand Waveform Streaming Server

A deserialization of untrusted data vulnerability exists in NI VeriStand Waveform Streaming Server that may result in remote code execution. Successful exploitation requires an attacker to send a specially crafted message. These vulnerabilities affect NI VeriStand 2024 Q2 and prior versions...

9.8CVSS7.8AI score0.01152EPSS
Exploits0References1
CVE
CVE
added 2024/07/22 8:50 p.m.49 views

CVE-2024-6794

NI VeriStand Waveform Streaming Server is affected by CVE-2024-6794 due to a deserialization of untrusted data flaw that can lead to remote code execution when processing crafted messages. Affected products include NI VeriStand and versions up to and including 2024 Q2 (and prior). The vulnerabili...

9.8CVSS9.8AI score0.01152EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/07/22 12:0 a.m.3 views

PT-2024-37868 · National Instruments · Ni Veristand

Name of the Vulnerable Software and Affected Versions: NI VeriStand versions prior to 2024 Q2 Description: A deserialization of untrusted data issue exists in the NI VeriStand Waveform Streaming Server, potentially leading to remote code execution. Successful exploitation requires an attacker to...

9.8CVSS8AI score0.01152EPSS
Exploits0References5
Fedora
Fedora
added 2024/01/18 1:47 a.m.30 views

[SECURITY] Fedora 39 Update: gtkwave-3.3.118-1.fc39

GTKWave is a waveform viewer that can view VCD files produced by most Verilog simulation tools, as well as LXT files produced by certain Verilog simulation tools...

7.8CVSS8AI score0.01493EPSS
Exploits82
Fedora
Fedora
added 2024/01/18 1:26 a.m.33 views

[SECURITY] Fedora 38 Update: gtkwave-3.3.118-1.fc38

GTKWave is a waveform viewer that can view VCD files produced by most Verilog simulation tools, as well as LXT files produced by certain Verilog simulation tools...

7.8CVSS8AI score0.01493EPSS
Exploits82
OpenVAS
OpenVAS
added 2024/01/18 12:0 a.m.129 views

Fedora: Security Advisory (FEDORA-2024-2647382c5f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.01493EPSS
Exploits82References4
SUSE CVE
SUSE CVE
added 2024/01/10 2:41 a.m.4 views

SUSE CVE-2023-38623

Multiple integer overflow vulnerabilities exist in the VZT facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the intege...

7.8CVSS8.1AI score0.00432EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2024/01/10 2:41 a.m.2 views

SUSE CVE-2023-38652

Multiple integer overflow vulnerabilities exist in the VZT vztrdblockvchdecode dict parsing functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to memory corruption. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...

7.8CVSS7.3AI score0.00364EPSS
Exploits1References3
OSV
OSV
added 2024/01/08 3:15 p.m.1 views

UBUNTU-CVE-2023-39273

Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...

7.8CVSS6.1AI score0.00414EPSS
Exploits1References3
OSV
OSV
added 2024/01/08 3:15 p.m.2 views

UBUNTU-CVE-2023-37282

An out-of-bounds write vulnerability exists in the VZT LZMARead dmem extraction functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger this vulnerability...

7.8CVSS7.5AI score0.00436EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/01/08 12:0 a.m.4 views

GTKWave 输入验证错误漏洞

GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. GTKWave suffers from an integer overflow vulnerability that can be exploited by an attacker to cause arbitrary code execution via a specially crafted fst file...

7.8CVSS7.9AI score0.00414EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/01/08 12:0 a.m.5 views

GTKWave 缓冲区错误漏洞

GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A buffer overflow vulnerability exists in GTKWave version 3.3.115. The vulnerability stems from a boundary error in the fstReaderIterBlocks2 chaintable parsing function when processing untrusted input, which can be exploited by ...

7.8CVSS8AI score0.00416EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/01/08 12:0 a.m.6 views

GTKWave 安全漏洞

GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A buffer overflow vulnerability exists in GTKWave version 3.3.115, which stems from a boundary error in the LXT2 lxt2rdexpandintegertobits function when handling untrusted input, and can be exploited by an attacker to cause...

7.8CVSS8AI score0.00435EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/01/08 12:0 a.m.4 views

GTKWave 缓冲区错误漏洞

GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A code execution vulnerability exists in GTKWave version 3.3.115, which can be exploited by an attacker to potentially cause arbitrary code execution via a specially crafted fst file...

7.8CVSS7.7AI score0.00432EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/01/08 12:0 a.m.5 views

GTKWave 缓冲区错误漏洞

GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A code execution vulnerability exists in GTKWave version 3.3.115, which can be exploited by an attacker to potentially cause arbitrary code execution via a specially crafted fst file...

7.8CVSS7.7AI score0.00432EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/01/08 12:0 a.m.7 views

GTKWave 资源管理错误漏洞

GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A memory error-induced vulnerability exists in GTKWave version 3.3.118, which can be exploited by an attacker to cause arbitrary code execution via a specially crafted fst file...

7.8CVSS7.7AI score0.00403EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/01/08 12:0 a.m.6 views

GTKWave 操作系统命令注入漏洞

GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. GTKWave version 3.3.115 suffers from an operating system command injection vulnerability that can be exploited by an attacker to cause arbitrary code execution via a specially crafted fst file...

7.8CVSS8.3AI score0.01493EPSS
Exploits1References2
CNNVD
CNNVD
added 2024/01/08 12:0 a.m.5 views

GTKWave 输入验证错误漏洞

GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. An integer overflow vulnerability exists in GTKWave version 3.3.118, which can be exploited by an attacker to potentially cause arbitrary code execution via a specially crafted fst file...

7.8CVSS7.9AI score0.00436EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/01/08 12:0 a.m.2 views

PT-2024-2952 · Gtkwave · Gtkwave

Name of the Vulnerable Software and Affected Versions: GTKWave version 3.3.115 Description: An integer overflow vulnerability exists in the VZT longest len value allocation functionality. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious...

7.8CVSS8.3AI score0.01493EPSS
Exploits82References136
CNNVD
CNNVD
added 2024/01/08 12:0 a.m.4 views

GTKWave 缓冲区错误漏洞

GTKWave is a full-featured, GTK+-based waveform viewer from GTKWave. A buffer overflow vulnerability exists in GTKWave version 3.3.115, which can be exploited by an attacker to cause arbitrary code execution via specially crafted .fst files...

7.8CVSS8AI score0.00435EPSS
Exploits1References2
Rows per page
Query Builder