VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Artifex
>
Ghostscript
> 4.31
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2018-11-23
CVE-2018-19476
Incorrect Type Conversion or Cast vulnerability in multiple products
psi/zicc.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because of a setcolorspace type confusion.
local
low complexity
artifex
debian
canonical
redhat
CWE-704
7.8
7.8
2018-11-23
CVE-2018-19475
psi/zdevice2.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because available stack space is not checked when the device remains the same.
local
low complexity
artifex
debian
canonical
redhat
7.8
7.8
2018-11-21
CVE-2018-19409
An issue was discovered in Artifex Ghostscript before 9.26.
network
low complexity
artifex
debian
canonical
redhat
critical
9.8
9.8
2018-10-19
CVE-2018-18284
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy operator.
local
low complexity
artifex
debian
canonical
redhat
pulsesecure
8.6
8.6
2018-10-15
CVE-2018-18073
Information Exposure vulnerability in multiple products
Artifex Ghostscript allows attackers to bypass a sandbox protection mechanism by leveraging exposure of system operators in the saved execution stack in an error object.
local
low complexity
artifex
debian
canonical
redhat
CWE-200
6.3
6.3
2018-10-15
CVE-2018-17961
Information Exposure Through an Error Message vulnerability in multiple products
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving errorhandler setup.
local
low complexity
artifex
debian
canonical
redhat
CWE-209
8.6
8.6
2018-09-19
CVE-2018-17183
Artifex Ghostscript before 9.25 allowed a user-writable error exception table, which could be used by remote attackers able to supply crafted PostScript to potentially overwrite or replace error handlers to inject code.
local
low complexity
debian
canonical
artifex
redhat
7.8
7.8
2018-09-10
CVE-2018-16802
An issue was discovered in Artifex Ghostscript before 9.25.
local
low complexity
artifex
debian
canonical
redhat
7.8
7.8
2018-09-06
CVE-2018-16585
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
An issue was discovered in Artifex Ghostscript before 9.24.
local
low complexity
artifex
canonical
debian
CWE-119
7.8
7.8
2018-09-05
CVE-2018-16543
In Artifex Ghostscript before 9.24, gssetresolution and gsgetresolution allow attackers to have an unspecified impact.
local
low complexity
artifex
canonical
debian
7.8
7.8
«
Previous
1
2
...
3
4
5
(current)
6
7
»
Next