Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ghostscript vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2017-7207
The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote malicious users to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.
Artifex Ghostscript 9.20
7.8
CVSSv3
CVE-2016-10317
The fill_threshhold_buffer function in base/gxht_thresh.c in Artifex Software, Inc. Ghostscript 9.20 allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript do...
Artifex Ghostscript 9.20
7.8
CVSSv3
CVE-2017-6196
Multiple use-after-free vulnerabilities in the gx_image_enum_begin function in base/gxipixel.c in Ghostscript before ecceafe3abba2714ef9b432035fe0739d9b1a283 allow remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact vi...
Artifex Afpl Ghostscript
5.5
CVSSv3
CVE-2016-10219
The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
Artifex Ghostscript 9.20
5.5
CVSSv3
CVE-2017-5951
The mem_get_bits_rectangle function in base/gdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.
Artifex Ghostscript 9.20
NA
CVE-2002-0363
ghostscript prior to 6.53 allows malicious users to execute arbitrary commands by using .locksafe or .setsafe to reset the current pagedevice.
Aladdin Enterprises Ghostscript
NA
CVE-2001-1353
ghostscript prior to 6.51 allows local users to read and write arbitrary files as the 'lp' user via the file operator, even with -dSAFER enabled.
Aladdin Enterprises Ghostscript
5.5
CVSSv3
CVE-2016-10217
The pdf14_open function in base/gdevp14.c in Artifex Software, Inc. Ghostscript 9.20 allows remote malicious users to cause a denial of service (use-after-free and application crash) via a crafted file that is mishandled in the color management module.
Artifex Ghostscript 9.20
7.8
CVSSv3
CVE-2017-7948
Integer overflow in the mark_curve function in Artifex Ghostscript 9.21 allows remote malicious users to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via a crafted PostScript document.
Artifex Ghostscript 9.21
5.5
CVSSv3
CVE-2017-8908
The mark_line_tr function in gxscanc.c in Artifex Ghostscript 9.21 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted PostScript document.
Artifex Ghostscript 9.21
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298
CVE-2024-20356
CVE-2023-21987
CVE-2024-33217
bypass
CVE-2024-31804
CVE-2024-32660
unauthorized
SSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »