A vulnerability was determined in YosysHQ yosys up to 0.62. This affects the function Yosys::RTLIL::Const::set of the file kernel/rtlil.h of the component BLIF File Parser. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been publicly disclosed and may be utilized. Applying a patch is the recommended action to fix this issue. It appears that the issue is not reproducible all the time.

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

Access Vector Local

Access Complexity Low

Authentication Single

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

This CVE is not in the KEV list.

Exploitation poc

Automatable no

Technical Impact partial

Affected Vendors & Products

Vendors Products
Yosyshq
  • Yosys

No data.

No data.

References
Link Providers
https://github.com/YosysHQ/yosys/ cve-icon cve-icon
https://github.com/YosysHQ/yosys/issues/5677 cve-icon cve-icon
https://github.com/YosysHQ/yosys/pull/5680 cve-icon cve-icon
https://github.com/YosysHQ/yosys/pull/5681 cve-icon cve-icon
https://github.com/oneafter/0210/blob/main/yo2/repro cve-icon cve-icon
https://vuldb.com/?ctiid.348302 cve-icon cve-icon
https://vuldb.com/?id.348302 cve-icon cve-icon
https://vuldb.com/?submit.763755 cve-icon cve-icon
History

Mon, 02 Mar 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 02 Mar 2026 12:15:00 +0000

Type Values Removed Values Added
First Time appeared Yosyshq
Yosyshq yosys
Vendors & Products Yosyshq
Yosyshq yosys

Mon, 02 Mar 2026 03:15:00 +0000

Type Values Removed Values Added
Description A vulnerability was determined in YosysHQ yosys up to 0.62. This affects the function Yosys::RTLIL::Const::set of the file kernel/rtlil.h of the component BLIF File Parser. This manipulation causes heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been publicly disclosed and may be utilized. Applying a patch is the recommended action to fix this issue. It appears that the issue is not reproducible all the time.
Title YosysHQ yosys BLIF File rtlil.h set heap-based overflow
Weaknesses CWE-119
CWE-122
References
Metrics cvssV2_0

{'score': 1.7, 'vector': 'AV:L/AC:L/Au:S/C:N/I:N/A:P/E:POC/RL:OF/RC:C'}

cvssV3_0

{'score': 3.3, 'vector': 'CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C'}

cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C'}

cvssV4_0

{'score': 4.8, 'vector': 'CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P'}
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-03-02T03:02:09.924Z

Updated: 2026-03-02T14:43:12.380Z

Reserved: 2026-03-01T07:03:11.753Z

Link: CVE-2026-3407

cve-icon Vulnrichment

Updated: 2026-03-02T14:40:30.343Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-03-02T03:16:01.600

Modified: 2026-03-02T20:30:10.923

Link: CVE-2026-3407

cve-icon Redhat

No data.