CVE-2023-36915
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Jan 8, 2024
Updated: Apr 9, 2024
CWE ID 190
Summary
CVE-2023-36915 is a newly disclosed vulnerability in GTKWave 3.3.115 where multiple integer overflows exist in the fstReaderIterBlocks2 chain_table allocation functionality. exploitation of these vulnerabilities could lead to arbitrary code execution, requiring a user to open a specially crafted .fst file to trigger the issue. The chain_table array is the affected component.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share