Vulnerabilities > Artifex

DATE CVE VULNERABILITY TITLE RISK
2017-04-03 CVE-2016-10217 Use After Free vulnerability in Artifex Ghostscript 9.20
The pdf14_open function in base/gdevp14.c in Artifex Software, Inc.
local
low complexity
artifex CWE-416
5.5
5.5
2017-03-26 CVE-2017-7264 Use After Free vulnerability in Artifex Mupdf 1.10A
Use-after-free vulnerability in the fz_subsample_pixmap function in fitz/pixmap.c in Artifex MuPDF 1.10a allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted document.
local
low complexity
artifex CWE-416
7.8
7.8
2017-03-24 CVE-2016-10133 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Artifex Mujs
Heap-based buffer overflow in the js_stackoverflow function in jsrun.c in Artifex Software, Inc.
network
low complexity
artifex CWE-119
critical
 9.8
9.8
2017-03-24 CVE-2016-10132 NULL Pointer Dereference vulnerability in multiple products
regexp.c in Artifex Software, Inc.
network
low complexity
artifex fedoraproject CWE-476
7.5
7.5
2017-03-21 CVE-2017-7207 NULL Pointer Dereference vulnerability in Artifex Ghostscript 9.20
The mem_get_bits_rectangle function in Artifex Software, Inc.
network
artifex CWE-476
4.3
4.3
2017-03-16 CVE-2016-10247 Out-of-bounds Write vulnerability in multiple products
Buffer overflow in the my_getline function in jstest_main.c in Mujstest in Artifex Software, Inc.
local
low complexity
artifex debian CWE-787
5.5
5.5
2017-03-16 CVE-2016-10246 Out-of-bounds Write vulnerability in multiple products
Buffer overflow in the main function in jstest_main.c in Mujstest in Artifex Software, Inc.
local
low complexity
artifex debian CWE-787
5.5
5.5
2017-03-15 CVE-2017-6060 Out-of-bounds Write vulnerability in multiple products
Stack-based buffer overflow in jstest_main.c in mujstest in Artifex Software, Inc.
local
low complexity
artifex debian CWE-787
7.8
7.8
2017-03-07 CVE-2013-5653 Information Exposure vulnerability in multiple products
The getenv and filenameforall functions in Ghostscript 9.10 ignore the "-dSAFER" argument, which allows remote attackers to read data via a crafted postscript file. 		4.3
4.3
2017-02-24 CVE-2017-6196 Use After Free vulnerability in Artifex Afpl Ghostscript
Multiple use-after-free vulnerabilities in the gx_image_enum_begin function in base/gxipixel.c in Ghostscript before ecceafe3abba2714ef9b432035fe0739d9b1a283 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PostScript document.
local
low complexity
artifex CWE-416
7.8
7.8