Vulnerabilities > Artifex
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-02-16 | CVE-2021-3781 | OS Command Injection vulnerability in multiple products A trivial sandbox (enabled with the `-dSAFER` option) escape flaw was found in the ghostscript interpreter by injecting a specially crafted pipe command. | 9.9 |
2022-02-14 | CVE-2021-45005 | Out-of-bounds Write vulnerability in Artifex Mujs 1.1.3 Artifex MuJS v1.1.3 was discovered to contain a heap buffer overflow which is caused by conflicting JumpList of nested try/finally statements. | 9.8 |
2022-01-01 | CVE-2021-45944 | Use After Free vulnerability in multiple products Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampled_data_sample (called from sampled_data_continue and interp). | 5.5 |
2022-01-01 | CVE-2021-45949 | Out-of-bounds Write vulnerability in multiple products Ghostscript GhostPDL 9.50 through 9.54.0 has a heap-based buffer overflow in sampled_data_finish (called from sampled_data_continue and interp). | 5.5 |
2021-07-21 | CVE-2021-37220 | Out-of-bounds Write vulnerability in multiple products MuPDF through 1.18.1 has an out-of-bounds write because the cached color converter does not properly consider the maximum key size of a hash table. | 5.5 |
2021-07-21 | CVE-2020-19609 | Out-of-bounds Write vulnerability in multiple products Artifex MuPDF before 1.18.0 has a heap based buffer over-write in tiff_expand_colormap() function when parsing TIFF files allowing attackers to cause a denial of service. | 5.5 |
2021-07-13 | CVE-2020-22885 | Classic Buffer Overflow vulnerability in Artifex Mujs Buffer overflow vulnerability in mujs before 1.0.8 due to recursion in the GC scanning phase, allows remote attackers to cause a denial of service. | 7.5 |
2021-07-13 | CVE-2020-22886 | Classic Buffer Overflow vulnerability in Artifex Mujs Buffer overflow vulnerability in function jsG_markobject in jsgc.c in mujs before 1.0.8, allows remote attackers to cause a denial of service. | 7.5 |
2021-02-23 | CVE-2021-3407 | A flaw was found in mupdf 1.18.0. | 5.5 |
2020-12-09 | CVE-2020-16600 | Use After Free vulnerability in Artifex Mupdf A Use After Free vulnerability exists in Artifex Software, Inc. | 7.8 |