Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ghostscript ghostscript vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-1869
Stack-based buffer overflow in the parser function in GhostScript 8.70 and 8.64 allows context-dependent malicious users to execute arbitrary code via a crafted PostScript file.
Artifex Gpl Ghostscript 8.70
Artifex Gpl Ghostscript 8.64
1 EDB exploit
NA
CVE-1999-0155
The ghostscript command with the -dSAFER option allows remote malicious users to execute commands.
Aladdin Enterprises Ghostscript 2.6
Aladdin Enterprises Ghostscript 3.22
NA
CVE-2010-1628
Ghostscript 8.64, 8.70, and possibly other versions allows context-dependent malicious users to execute arbitrary code via a PostScript file containing unlimited recursive procedure invocations, which trigger memory corruption in the stack of the interpreter.
Artifex Gpl Ghostscript 8.64
Artifex Gpl Ghostscript 8.70
7.5
CVSSv3
CVE-2023-46751
An issue exists in the function gdev_prn_open_printer_seekable() in Artifex Ghostscript up to and including 10.02.0 allows remote malicious users to crash the application via a dangling pointer.
Artifex Ghostscript
5.3
CVSSv3
CVE-2018-11645
psi/zfile.c in Artifex Ghostscript prior to 9.21rc1 permits the status command even if -dSAFER is used, which might allow remote malicious users to determine the existence and size of arbitrary files, a similar issue to CVE-2016-7977.
Artifex Ghostscript
5.5
CVSSv3
CVE-2023-38560
An integer overflow flaw was found in pcl/pl/plfont.c:418 in pl_glyph_name in ghostscript. This issue may allow a local malicious user to cause a denial of service via transforming a crafted PCL file to PDF format.
Artifex Ghostscript -
5.5
CVSSv3
CVE-2016-10218
The pdf14_pop_transparency_group function in base/gdevp14.c in the PDF Transparency module in Artifex Software, Inc. Ghostscript 9.20 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
Artifex Ghostscript 9.20
5.5
CVSSv3
CVE-2016-10219
The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
Artifex Ghostscript 9.20
7.8
CVSSv3
CVE-2016-10317
The fill_threshhold_buffer function in base/gxht_thresh.c in Artifex Software, Inc. Ghostscript 9.20 allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript do...
Artifex Ghostscript 9.20
5.5
CVSSv3
CVE-2016-10217
The pdf14_open function in base/gdevp14.c in Artifex Software, Inc. Ghostscript 9.20 allows remote malicious users to cause a denial of service (use-after-free and application crash) via a crafted file that is mishandled in the color management module.
Artifex Ghostscript 9.20
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324
path traversal
CVE-2024-4743
CVE-2024-5184
TCP
CVE-2024-27822
code injection
CVE-2024-28995
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »