Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
artifex vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-11411
An issue exists in Artifex MuJS 1.0.5. The Number#toFixed() and numtostr implementations in jsnumber.c have a stack-based buffer overflow.
Artifex Mujs 1.0.5
9.8
CVSSv3
CVE-2016-10133
Heap-based buffer overflow in the js_stackoverflow function in jsrun.c in Artifex Software, Inc. MuJS allows malicious users to have unspecified impact by leveraging an error when dropping extra arguments to lightweight functions.
Artifex Mujs
9.8
CVSSv3
CVE-2016-10141
An integer overflow vulnerability was observed in the regemit function in regexp.c in Artifex Software, Inc. MuJS before fa3d30fd18c348bb4b1f3858fb860f4fcd4b2045. The attack requires a regular expression with nested repetition. A successful exploitation of this issue can lead to ...
Artifex Mujs
9.8
CVSSv3
CVE-2016-7504
A use-after-free vulnerability was observed in Rp_toString function of Artifex Software, Inc. MuJS prior to 5c337af4b3df80cf967e4f9f6a21522de84b392a. A successful exploitation of this issue can lead to code execution or denial of service condition.
Artifex Mujs
9.8
CVSSv3
CVE-2016-7505
A buffer overflow vulnerability was observed in divby function of Artifex Software, Inc. MuJS prior to 8c805b4eb19cf2af689c860b77e6111d2ee439d5. A successful exploitation of this issue can lead to code execution or denial of service condition.
Artifex Mujs
9.8
CVSSv3
CVE-2016-6525
Heap-based buffer overflow in the pdf_load_mesh_params function in pdf/pdf-shade.c in MuPDF allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a large decode array.
Debian Debian Linux 8.0
Artifex Mupdf
8.8
CVSSv3
CVE-2023-43115
In Artifex Ghostscript up to and including 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via crafted PostScript documents because they can switch to the IJS device, or change the IjsServer parameter, after SAFER has been activated. NOTE: it is a documented risk...
Artifex Ghostscript
Fedoraproject Fedora 38
Fedoraproject Fedora 39
1 Github repository
8.8
CVSSv3
CVE-2022-44789
A logical issue in O_getOwnPropertyDescriptor() in Artifex MuJS 1.0.0 up to and including 1.3.x prior to 1.3.2 allows an malicious user to achieve Remote Code Execution through memory corruption, via the loading of a crafted JavaScript file.
Artifex Mujs
Debian Debian Linux 11.0
Fedoraproject Fedora 37
1 Github repository
8.8
CVSSv3
CVE-2019-14869
A flaw was found in all versions of ghostscript 9.x prior to 9.50, where the `.charkeys` procedure, where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScri...
Artifex Ghostscript
Fedoraproject Fedora 29
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Opensuse Leap 15.0
Opensuse Leap 15.1
8.8
CVSSv3
CVE-2016-7976
The PS Interpreter in Ghostscript 9.18 and 9.20 allows remote malicious users to execute arbitrary code via crafted userparams.
Artifex Ghostscript 9.18
Artifex Ghostscript 9.20
3 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »