VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Artifex
>
Ghostscript
> High
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2019-03-21
CVE-2019-6116
In Artifex Ghostscript through 9.26, ephemeral or transient procedures can allow access to system operators, leading to remote code execution.
local
low complexity
artifex
fedoraproject
canonical
debian
opensuse
redhat
7.8
7.8
2018-12-20
CVE-2018-19134
Incorrect Type Conversion or Cast vulnerability in multiple products
In Artifex Ghostscript through 9.25, the setpattern operator did not properly validate certain types.
local
low complexity
artifex
debian
redhat
CWE-704
7.8
7.8
2018-12-03
CVE-2018-16863
It was found that RHSA-2018:2918 did not fully fix CVE-2018-16509.
local
low complexity
artifex
redhat
7.8
7.8
2018-11-23
CVE-2018-19477
Incorrect Type Conversion or Cast vulnerability in multiple products
psi/zfjbig2.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because of a JBIG2Decode type confusion.
local
low complexity
artifex
debian
canonical
redhat
CWE-704
7.8
7.8
2018-11-23
CVE-2018-19476
Incorrect Type Conversion or Cast vulnerability in multiple products
psi/zicc.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because of a setcolorspace type confusion.
local
low complexity
artifex
debian
canonical
redhat
CWE-704
7.8
7.8
2018-11-23
CVE-2018-19475
psi/zdevice2.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because available stack space is not checked when the device remains the same.
local
low complexity
artifex
debian
canonical
redhat
7.8
7.8
2018-10-19
CVE-2018-18284
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy operator.
local
low complexity
artifex
debian
canonical
redhat
pulsesecure
8.6
8.6
2018-10-15
CVE-2018-17961
Information Exposure Through an Error Message vulnerability in multiple products
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving errorhandler setup.
local
low complexity
artifex
debian
canonical
redhat
CWE-209
8.6
8.6
2018-09-19
CVE-2018-17183
Artifex Ghostscript before 9.25 allowed a user-writable error exception table, which could be used by remote attackers able to supply crafted PostScript to potentially overwrite or replace error handlers to inject code.
local
low complexity
debian
canonical
artifex
redhat
7.8
7.8
2018-09-10
CVE-2018-16802
An issue was discovered in Artifex Ghostscript before 9.25.
local
low complexity
artifex
debian
canonical
redhat
7.8
7.8
«
Previous
1
2
3
(current)
4
5
»
Next