Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ghostscript vulnerabilities and exploits
(subscribe to this query)
NA
CVE-1999-0155
The ghostscript command with the -dSAFER option allows remote malicious users to execute commands.
Aladdin Enterprises Ghostscript 2.6
Aladdin Enterprises Ghostscript 3.22
NA
CVE-2010-1628
Ghostscript 8.64, 8.70, and possibly other versions allows context-dependent malicious users to execute arbitrary code via a PostScript file containing unlimited recursive procedure invocations, which trigger memory corruption in the stack of the interpreter.
Artifex Gpl Ghostscript 8.64
Artifex Gpl Ghostscript 8.70
NA
CVE-2010-1869
Stack-based buffer overflow in the parser function in GhostScript 8.70 and 8.64 allows context-dependent malicious users to execute arbitrary code via a crafted PostScript file.
Artifex Gpl Ghostscript 8.70
Artifex Gpl Ghostscript 8.64
1 EDB exploit
5.5
CVSSv3
CVE-2023-38560
An integer overflow flaw was found in pcl/pl/plfont.c:418 in pl_glyph_name in ghostscript. This issue may allow a local malicious user to cause a denial of service via transforming a crafted PCL file to PDF format.
Artifex Ghostscript -
5.3
CVSSv3
CVE-2018-11645
psi/zfile.c in Artifex Ghostscript prior to 9.21rc1 permits the status command even if -dSAFER is used, which might allow remote malicious users to determine the existence and size of arbitrary files, a similar issue to CVE-2016-7977.
Artifex Ghostscript
7.5
CVSSv3
CVE-2023-46751
An issue exists in the function gdev_prn_open_printer_seekable() in Artifex Ghostscript up to and including 10.02.0 allows remote malicious users to crash the application via a dangling pointer.
Artifex Ghostscript
7.8
CVSSv3
CVE-2016-10317
The fill_threshhold_buffer function in base/gxht_thresh.c in Artifex Software, Inc. Ghostscript 9.20 allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript do...
Artifex Ghostscript 9.20
7.8
CVSSv3
CVE-2017-7948
Integer overflow in the mark_curve function in Artifex Ghostscript 9.21 allows remote malicious users to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via a crafted PostScript document.
Artifex Ghostscript 9.21
5.5
CVSSv3
CVE-2017-5951
The mem_get_bits_rectangle function in base/gdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
Artifex Ghostscript 9.20
5.5
CVSSv3
CVE-2020-21710
A divide by zero issue discovered in eps_print_page in gdevepsn.c in Artifex Software GhostScript 9.50 allows remote malicious users to cause a denial of service via opening of crafted PDF file.
Artifex Ghostscript 9.50
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »