Vulnerabilities > CVE-2023-39414 - Integer Underflow (Wrap or Wraparound) vulnerability in Tonybybell Gtkwave 3.3.115

047910
CVSS 7.3 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
local
low complexity
tonybybell
CWE-191

Summary

Multiple integer underflow vulnerabilities exist in the LXT2 lxt2_rd_iter_radix shift operation functionality of GTKWave 3.3.115. A specially crafted .lxt2 file can lead to memory corruption. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the integer underflow when performing the right shift operation.

Vulnerable Configurations

Part Description Count
Application
Tonybybell
1

Common Weakness Enumeration (CWE)