CVE-2023-39413

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 8, 2024
Updated: Apr 9, 2024
CWE ID 191

Summary

CVE-2023-39413 is a vulnerability affecting GTKWave 3.3.115 where multiple integer underflow issues exist in the LXT2 lxt2_rd_iter_radix shift operation functionality. These underflow vulnerabilities can lead to memory corruption when processing a specially crafted .lxt2 file. A victim must open the malicious file to trigger these vulnerabilities, posing a risk if the file is received or downloaded from an untrusted source. This issue involves the left shift operation resulting in integer underflow, potentially causing memory corruption.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share