Skip to main content
CVE-2023-37923 HIGH POC This Week

Multiple arbitrary write vulnerabilities exist in the VCD sorted bsearch functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-37921 HIGH POC This Week

Multiple arbitrary write vulnerabilities exist in the VCD sorted bsearch functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-37419 HIGH POC This Week

Multiple out-of-bounds write vulnerabilities exist in the VCD parse_valuechange portdump functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Memory Corruption Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-37418 HIGH POC This Week

Multiple out-of-bounds write vulnerabilities exist in the VCD parse_valuechange portdump functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Memory Corruption Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-35969 HIGH POC This Week

Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 chain_table parsing functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-39235 HIGH POC This Week

Multiple out-of-bounds write vulnerabilities exist in the VZT vzt_rd_process_block autosort functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-38657 HIGH POC This Week

An out-of-bounds write vulnerability exists in the LXT2 zlib block decompression functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-38648 HIGH POC This Week

Multiple out-of-bounds write vulnerabilities exist in the VZT vzt_rd_get_facname decompression functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-35996 HIGH POC This Week

Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-35989 HIGH POC This Week

An integer overflow vulnerability exists in the LXT2 zlib block allocation functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-34436 HIGH POC This Week

An out-of-bounds write vulnerability exists in the LXT2 num_time_table_entries functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-38649 HIGH POC This Week

Multiple out-of-bounds write vulnerabilities exist in the VZT vzt_rd_get_facname decompression functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-36864 HIGH POC This Week

An integer overflow vulnerability exists in the fstReaderIterBlocks2 temp_signal_value_buf allocation functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2022-3328 HIGH POC PATCH This Week

Race condition in snap-confine's must_mkdir_and_open_with_perms(). Rated high severity (CVSS 7.8). Public exploit code available.

Race Condition Information Disclosure Snapd Ubuntu Linux
NVD GitHub
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-35702 HIGH POC This Week

Multiple stack-based buffer overflow vulnerabilities exist in the FST LEB128 varint functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Stack Overflow RCE Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-39271 HIGH POC This Week

Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-39270 HIGH POC This Week

Multiple integer overflow vulnerabilities exist in the LXT2 facgeometry parsing functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-34087 HIGH POC This Week

An improper array index validation vulnerability exists in the EVCD var len parsing functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-35970 HIGH POC This Week

Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 chain_table parsing functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-35004 HIGH POC This Week

An integer overflow vulnerability exists in the VZT longest_len value allocation functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-37282 HIGH POC This Week

An out-of-bounds write vulnerability exists in the VZT LZMA_Read dmem extraction functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-36916 HIGH POC This Week

Multiple integer overflow vulnerabilities exist in the FST fstReaderIterBlocks2 chain_table allocation functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-36915 HIGH POC This Week

Multiple integer overflow vulnerabilities exist in the FST fstReaderIterBlocks2 chain_table allocation functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-36861 HIGH POC This Week

An out-of-bounds write vulnerability exists in the VZT LZMA_read_varint functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-35997 HIGH POC This Week

Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-35995 HIGH POC This Week

Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-35994 HIGH POC This Week

Multiple improper array index validation vulnerabilities exist in the fstReaderIterBlocks2 tdelta functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.1%
CVE-2023-35704 HIGH POC This Week

Multiple stack-based buffer overflow vulnerabilities exist in the FST LEB128 varint functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Stack Overflow RCE Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2023-35703 HIGH POC This Week

Multiple stack-based buffer overflow vulnerabilities exist in the FST LEB128 varint functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Stack Overflow RCE Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2023-39234 HIGH POC This Week

Multiple out-of-bounds write vulnerabilities exist in the VZT vzt_rd_process_block autosort functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow RCE Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2023-35057 HIGH POC This Week

An integer overflow vulnerability exists in the LXT2 lxt2_rd_trace value elements allocation functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.8
EPSS
0.0%
CVE-2023-6750 HIGH POC This Week

The Clone WordPress plugin before 2.4.3 uses buffer files to store in-progress backup informations, which is stored at a publicly accessible, statically defined file path. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Information Disclosure Clone
NVD WPScan
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-6383 HIGH POC This Week

The Debug Log Manager WordPress plugin before 2.3.0 contains a Directory listing vulnerability was discovered, which allows you to download the debug log without authorization and gain access to. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass WordPress Information Disclosure Debug Log Manager
NVD WPScan
CVSS 3.1
7.5
EPSS
0.6%
CVE-2023-6042 HIGH POC This Week

Any unauthenticated user may send e-mail from the site with any title or content to the admin. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Getwid
NVD WPScan
CVSS 3.1
7.5
EPSS
0.4%
CVE-2023-5957 HIGH POC This Week

The Ni Purchase Order(PO) For WooCommerce WordPress plugin through 1.2.1 does not validate logo and signature image files uploaded in the settings, allowing high privileged user to upload arbitrary. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload WordPress Ni Purchase Order Po For Woocommerce
NVD WPScan
CVSS 3.1
7.2
EPSS
0.6%
CVE-2023-7218 HIGH POC This Week

A vulnerability, which was classified as critical, was found in Totolink N350RT 9.3.5u.6139_B202012. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Stack Overflow Buffer Overflow N350Rt Firmware
NVD GitHub VulDB
CVSS 3.1
7.2
EPSS
0.2%
CVE-2023-32650 HIGH POC This Week

An integer overflow vulnerability exists in the FST_BL_GEOM parsing maxhandle functionality of GTKWave 3.3.115, when compiled as a 32-bit binary. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

Integer Overflow Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.0
EPSS
0.1%
CVE-2023-36747 HIGH POC This Week

Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 fstWritex len functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.0
EPSS
0.0%
CVE-2023-38652 HIGH POC This Week

Multiple integer overflow vulnerabilities exist in the VZT vzt_rd_block_vch_decode dict parsing functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

Integer Overflow Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.0
EPSS
0.0%
CVE-2023-36746 HIGH POC This Week

Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 fstWritex len functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.0
EPSS
0.0%
CVE-2023-39413 HIGH POC This Week

Multiple integer underflow vulnerabilities exist in the LXT2 lxt2_rd_iter_radix shift operation functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

Integer Overflow Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.0
EPSS
0.0%
CVE-2023-35992 HIGH POC This Week

An integer overflow vulnerability exists in the FST fstReaderIterBlocks2 vesc allocation functionality of GTKWave 3.3.115, when compiled as a 32-bit binary. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

Integer Overflow Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.0
EPSS
0.0%
CVE-2023-38651 HIGH POC This Week

Multiple integer overflow vulnerabilities exist in the VZT vzt_rd_block_vch_decode times parsing functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

Integer Overflow Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.0
EPSS
0.0%
CVE-2023-38650 HIGH POC This Week

Multiple integer overflow vulnerabilities exist in the VZT vzt_rd_block_vch_decode times parsing functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

Integer Overflow Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.0
EPSS
0.0%
CVE-2023-38653 HIGH POC This Week

Multiple integer overflow vulnerabilities exist in the VZT vzt_rd_block_vch_decode dict parsing functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

Integer Overflow Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.0
EPSS
0.0%
CVE-2023-39414 HIGH POC This Week

Multiple integer underflow vulnerabilities exist in the LXT2 lxt2_rd_iter_radix shift operation functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

Integer Overflow Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.0
EPSS
0.0%
CVE-2023-35128 HIGH POC This Week

An integer overflow vulnerability exists in the fstReaderIterBlocks2 time_table tsec_nitems functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.0), this vulnerability is no authentication required. Public exploit code available and no vendor patch available.

Integer Overflow Buffer Overflow Gtkwave
NVD
CVSS 3.1
7.0
EPSS
0.0%
CVE-2023-5235 HIGH This Week

The Ovic Responsive WPBakery WordPress plugin before 1.2.9 does not limit which options can be updated via some of its AJAX actions, which may allow attackers with a subscriber+ account to update. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Deserialization WordPress Ovic Responsive Wpbakery WPBakery Page Builder
NVD WPScan
CVSS 3.1
8.8
EPSS
0.6%
CVE-2023-29048 HIGH This Week

A component for parsing OXMF templates could be abused to execute arbitrary system commands that would be executed as the non-privileged runtime user. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Command Injection Ox App Suite
NVD
CVSS 3.1
8.8
EPSS
0.4%
CVE-2023-6845 HIGH This Week

The CommentTweets WordPress plugin through 0.6 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress CSRF Commenttweets
NVD WPScan
CVSS 3.1
8.8
EPSS
0.3%
Prev Page 2 of 3 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy