CVE-2023-36915

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 8, 2024

Updated: Apr 9, 2024

CWE ID 190

Summary

CVE-2023-36915 is a newly disclosed vulnerability in GTKWave 3.3.115 where multiple integer overflows exist in the fstReaderIterBlocks2 chain_table allocation functionality. exploitation of these vulnerabilities could lead to arbitrary code execution, requiring a user to open a specially crafted .fst file to trigger the issue. The chain_table array is the affected component.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uEpLR7
https://www.cve.org/CVERecord?id=CVE-2023-36915
https://nvd.nist.gov/vuln/detail/CVE-2023-36915

Back to Vulnerability Database

CVE-2023-36915

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations