Skip to main content

Gtkwave CVE-2023-35955

HIGH
Buffer Overflow (CWE-119)
2024-01-08 talos-cna@cisco.com
7.8
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.8 HIGH
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

3
Analysis Generated
Mar 28, 2026 - 19:34 vuln.today
PoC Detected
Nov 04, 2025 - 19:15 vuln.today
Public exploit code
CVE Published
Jan 08, 2024 - 15:15 nvd
HIGH 7.8

DescriptionCVE.org

Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 VCDATA parsing functionality of GTKWave 3.3.115. A specially-crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the decompression function LZ4_decompress_safe_partial.

AnalysisAI

Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 VCDATA parsing functionality of GTKWave 3.3.115. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Technical ContextAI

This vulnerability is classified as Buffer Overflow (CWE-119), which allows attackers to corrupt memory to execute arbitrary code or crash the application. Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 VCDATA parsing functionality of GTKWave 3.3.115. A specially-crafted .fst file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the decompression function LZ4_decompress_safe_partial. Affected products include: Tonybybell Gtkwave.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Use memory-safe languages or bounds-checking. Enable ASLR, DEP/NX, stack canaries. Use safe string functions.

CVE-2023-37575 HIGH POC
7.8 Jan 08

Multiple use-after-free vulnerabilities exist in the VCD get_vartoken realloc functionality of GTKWave 3.3.115. Rated hi

CVE-2023-37574 HIGH POC
7.8 Jan 08

Multiple use-after-free vulnerabilities exist in the VCD get_vartoken realloc functionality of GTKWave 3.3.115. Rated hi

CVE-2023-37447 HIGH POC
7.8 Jan 08

Multiple out-of-bounds read vulnerabilities exist in the VCD var definition section functionality of GTKWave 3.3.115. Ra

CVE-2023-37577 HIGH POC
7.8 Jan 08

Multiple use-after-free vulnerabilities exist in the VCD get_vartoken realloc functionality of GTKWave 3.3.115. Rated hi

CVE-2023-39444 HIGH POC
7.8 Jan 08

Multiple out-of-bounds write vulnerabilities exist in the LXT2 parsing functionality of GTKWave 3.3.115. Rated high seve

CVE-2023-37442 HIGH POC
7.8 Jan 08

Multiple out-of-bounds read vulnerabilities exist in the VCD var definition section functionality of GTKWave 3.3.115. Ra

CVE-2023-39317 HIGH POC
7.8 Jan 08

Multiple integer overflow vulnerabilities exist in the LXT2 num_dict_entries functionality of GTKWave 3.3.115. Rated hig

CVE-2023-35963 HIGH POC
7.8 Jan 08

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. Rated high se

CVE-2023-35962 HIGH POC
7.8 Jan 08

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. Rated high se

CVE-2023-35960 HIGH POC
7.8 Jan 08

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. Rated high se

CVE-2023-35959 HIGH POC
7.8 Jan 08

Multiple OS command injection vulnerabilities exist in the decompression functionality of GTKWave 3.3.115. Rated high se

CVE-2023-37573 HIGH POC
7.8 Jan 08

Multiple use-after-free vulnerabilities exist in the VCD get_vartoken realloc functionality of GTKWave 3.3.115. Rated hi

Share

CVE-2023-35955 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy