CVE-2023-34436

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 8, 2024

Updated: Apr 9, 2024

CWE ID 119

CWE ID 787

Summary

CVE-2023-34436 is an out-of-bounds write vulnerability discovered in GTKWave 3.3.115's LXT2 num_time_table_entries functionality. Malicious .lxt2 files can exploit this weakness, leading to arbitrary code execution. A victim must open such a file for the vulnerability to be triggered. This issue poses a serious risk, as opening a maliciously crafted file could compromise the affected system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rzabhR
https://www.cve.org/CVERecord?id=CVE-2023-34436
https://nvd.nist.gov/vuln/detail/CVE-2023-34436

Back to Vulnerability Database

CVE-2023-34436

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations