[email protected]CVE-2019-3835

HistoryMar 25, 2019 - 7:29 p.m.

CVE-2019-3835

2019-03-2519:29:00

CWE-862

[email protected]

web.nvd.nist.gov

200

cve-2019-3835

ghostscript

postscript

vulnerability

file system access

nvd

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

5.9 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

59.4%

JSON

It was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER.

VendorProductVersionCPE
ghostscriptghostscript*cpe:2.3:a:ghostscript:ghostscript:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ghostscript	ghostscript	*	cpe:2.3:a:ghostscript:ghostscript::::::::

References

lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html

lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html

packetstormsecurity.com/files/152367/Slackware-Security-Advisory-ghostscript-Updates.html

www.securityfocus.com/bid/107855

access.redhat.com/errata/RHSA-2019:0652

access.redhat.com/errata/RHSA-2019:0971

bugs.ghostscript.com/show_bug.cgi?id=700585

bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3835

lists.debian.org/debian-lts-announce/2019/04/msg00021.html

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A43SRQAEHQCKSEMIBINHUNIGHTDCZD7F/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ANBSCZABXQUEQWIKNWJ35IYX24M227EI/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SVERLGEU3OV6RNZ2SIBXREWD3BF5H23N/

seclists.org/bugtraq/2019/Apr/28

seclists.org/bugtraq/2019/Apr/4

security.gentoo.org/glsa/202004-03

www.debian.org/security/2019/dsa-4432

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

5.9 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.002 Low

EPSS

Percentile

59.4%

JSON

Related for CVE-2019-3835

nessus31 ubuntucve1 prion1 alpinelinux1 veracode1 debiancve1 openvas21 osv3 oraclelinux3 redhatcve1 fedora6 debian3 centos1 ubuntu1 redhat3 ibm1 freebsd1 slackware1 archlinux1 mageia1 suse2 gentoo1 amazon1