nvd-json-data-feeds/CVE-2023/CVE-2023-392xx/CVE-2023-39234.json

{
  "id": "CVE-2023-39234",
  "sourceIdentifier": "talos-cna@cisco.com",
  "published": "2024-01-08T15:15:22.593",
  "lastModified": "2024-04-09T21:15:14.597",
  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
      "value": "Multiple out-of-bounds write vulnerabilities exist in the VZT vzt_rd_process_block autosort functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the out-of-bounds write when looping over `lt->numrealfacs`."
    },
    {
      "lang": "es",
      "value": "Existen m\u00faltiples vulnerabilidades de escritura fuera de los l\u00edmites en la funcionalidad de ordenaci\u00f3n autom\u00e1tica VZT vzt_rd_process_block de GTKWave 3.3.115. Un archivo .vzt especialmente manipulado puede provocar la ejecuci\u00f3n de c\u00f3digo arbitrario. Una v\u00edctima necesitar\u00eda abrir un archivo malicioso para activar estas vulnerabilidades. Esta vulnerabilidad se refiere a la escritura fuera de los l\u00edmites al realizar un bucle sobre `lt-&gt;numrealfacs`."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
          "attackVector": "LOCAL",
          "attackComplexity": "LOW",
          "privilegesRequired": "NONE",
          "userInteraction": "REQUIRED",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9
      },
      {
        "source": "talos-cna@cisco.com",
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
          "attackVector": "LOCAL",
          "attackComplexity": "LOW",
          "privilegesRequired": "NONE",
          "userInteraction": "REQUIRED",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-129"
        }
      ]
    },
    {
      "source": "talos-cna@cisco.com",
      "type": "Secondary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-129"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:tonybybell:gtkwave:3.3.115:*:*:*:*:*:*:*",
              "matchCriteriaId": "3C619471-C2FB-4A2C-894C-2562A6BA76DF"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html",
      "source": "talos-cna@cisco.com"
    },
    {
      "url": "https://talosintelligence.com/vulnerability_reports/TALOS-2023-1817",
      "source": "talos-cna@cisco.com",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ]
    }
  ]
}
Auto-Update: 2024-01-08T17:00:24.988335+00:00 2024-01-08 17:00:28 +00:00			`{`
			`"id": "CVE-2023-39234",`
			`"sourceIdentifier": "talos-cna@cisco.com",`
			`"published": "2024-01-08T15:15:22.593",`
Auto-Update: 2024-04-09T22:00:38.951266+00:00 2024-04-09 22:03:29 +00:00			`"lastModified": "2024-04-09T21:15:14.597",`
			`"vulnStatus": "Modified",`
Auto-Update: 2024-01-08T17:00:24.988335+00:00 2024-01-08 17:00:28 +00:00			`"descriptions": [`
			`{`
			`"lang": "en",`
			"value": "Multiple out-of-bounds write vulnerabilities exist in the VZT vzt_rd_process_block autosort functionality of GTKWave 3.3.115. A specially crafted .vzt file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the out-of-bounds write when looping over `lt->numrealfacs`."
Auto-Update: 2024-01-11T19:00:35.042428+00:00 2024-01-11 19:00:38 +00:00			`},`
			`{`
			`"lang": "es",`
			"value": "Existen m\u00faltiples vulnerabilidades de escritura fuera de los l\u00edmites en la funcionalidad de ordenaci\u00f3n autom\u00e1tica VZT vzt_rd_process_block de GTKWave 3.3.115. Un archivo .vzt especialmente manipulado puede provocar la ejecuci\u00f3n de c\u00f3digo arbitrario. Una v\u00edctima necesitar\u00eda abrir un archivo malicioso para activar estas vulnerabilidades. Esta vulnerabilidad se refiere a la escritura fuera de los l\u00edmites al realizar un bucle sobre `lt->numrealfacs`."
Auto-Update: 2024-01-08T17:00:24.988335+00:00 2024-01-08 17:00:28 +00:00			`}`
			`],`
			`"metrics": {`
			`"cvssMetricV31": [`
Auto-Update: 2024-01-11T19:00:35.042428+00:00 2024-01-11 19:00:38 +00:00			`{`
			`"source": "nvd@nist.gov",`
			`"type": "Primary",`
			`"cvssData": {`
			`"version": "3.1",`
			`"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",`
			`"attackVector": "LOCAL",`
			`"attackComplexity": "LOW",`
			`"privilegesRequired": "NONE",`
			`"userInteraction": "REQUIRED",`
			`"scope": "UNCHANGED",`
			`"confidentialityImpact": "HIGH",`
			`"integrityImpact": "HIGH",`
			`"availabilityImpact": "HIGH",`
			`"baseScore": 7.8,`
			`"baseSeverity": "HIGH"`
			`},`
			`"exploitabilityScore": 1.8,`
			`"impactScore": 5.9`
			`},`
Auto-Update: 2024-01-08T17:00:24.988335+00:00 2024-01-08 17:00:28 +00:00			`{`
			`"source": "talos-cna@cisco.com",`
			`"type": "Secondary",`
			`"cvssData": {`
			`"version": "3.1",`
			`"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",`
			`"attackVector": "LOCAL",`
			`"attackComplexity": "LOW",`
			`"privilegesRequired": "NONE",`
			`"userInteraction": "REQUIRED",`
			`"scope": "UNCHANGED",`
			`"confidentialityImpact": "HIGH",`
			`"integrityImpact": "HIGH",`
			`"availabilityImpact": "HIGH",`
			`"baseScore": 7.8,`
			`"baseSeverity": "HIGH"`
			`},`
			`"exploitabilityScore": 1.8,`
			`"impactScore": 5.9`
			`}`
			`]`
			`},`
			`"weaknesses": [`
Auto-Update: 2024-01-11T19:00:35.042428+00:00 2024-01-11 19:00:38 +00:00			`{`
			`"source": "nvd@nist.gov",`
			`"type": "Primary",`
			`"description": [`
			`{`
			`"lang": "en",`
			`"value": "CWE-129"`
			`}`
			`]`
			`},`
Auto-Update: 2024-01-08T17:00:24.988335+00:00 2024-01-08 17:00:28 +00:00			`{`
			`"source": "talos-cna@cisco.com",`
			`"type": "Secondary",`
			`"description": [`
			`{`
			`"lang": "en",`
			`"value": "CWE-129"`
			`}`
			`]`
			`}`
			`],`
Auto-Update: 2024-01-11T19:00:35.042428+00:00 2024-01-11 19:00:38 +00:00			`"configurations": [`
			`{`
			`"nodes": [`
			`{`
			`"operator": "OR",`
			`"negate": false,`
			`"cpeMatch": [`
			`{`
			`"vulnerable": true,`
			`"criteria": "cpe:2.3:a:tonybybell:gtkwave:3.3.115:::::::*",`
			`"matchCriteriaId": "3C619471-C2FB-4A2C-894C-2562A6BA76DF"`
			`}`
			`]`
			`}`
			`]`
			`}`
			`],`
Auto-Update: 2024-01-08T17:00:24.988335+00:00 2024-01-08 17:00:28 +00:00			`"references": [`
Auto-Update: 2024-04-09T22:00:38.951266+00:00 2024-04-09 22:03:29 +00:00			`{`
			`"url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00007.html",`
			`"source": "talos-cna@cisco.com"`
			`},`
Auto-Update: 2024-01-08T17:00:24.988335+00:00 2024-01-08 17:00:28 +00:00			`{`
			`"url": "https://talosintelligence.com/vulnerability_reports/TALOS-2023-1817",`
Auto-Update: 2024-01-11T19:00:35.042428+00:00 2024-01-11 19:00:38 +00:00			`"source": "talos-cna@cisco.com",`
			`"tags": [`
			`"Exploit",`
			`"Third Party Advisory"`
			`]`
Auto-Update: 2024-01-08T17:00:24.988335+00:00 2024-01-08 17:00:28 +00:00			`}`
			`]`
			`}`