Lucene search
GoogleOSV:SUSE-SU-2024:2292-1HistoryJul 03, 2024 - 11:32 a.m.
Security update for ghostscript
2024-07-0311:32:14
Google
osv.dev
CVSS3
6.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
AI Score
7.8
Confidence
Low
This update for ghostscript fixes the following issues:
- CVE-2024-29510: Fixed an arbitrary path traversal when running in a
permitted path (bsc#1226945). - CVE-2024-33870: Fixed a format string injection that could lead to
command execution (bsc#1226944). - CVE-2024-33869: Fixed a path validation bypass that could lead to
path traversal (bsc#1226946).
Related
nessus
nessus
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : ghostscript (SUSE-SU-2024:2292-1)
2024-07-04 00:00:00
EulerOS 2.0 SP10 : ghostscript (EulerOS-SA-2024-2436)
2024-09-12 00:00:00
SUSE SLES12 Security Update : ghostscript (SUSE-SU-2024:2276-1)
2024-07-03 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2024-2389)
2024-09-12 00:00:00
Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2024-2364)
2024-09-12 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:2276-1)
2024-07-03 00:00:00
redhat
redhat
(RHSA-2024:6466) Moderate: ghostscript security update
2024-09-09 01:03:04
(RHSA-2024:6197) Moderate: ghostscript security update
2024-09-03 05:31:24
oraclelinux
oraclelinux
ghostscript security update
2024-09-03 00:00:00
osv
osv
Security update for ghostscript
2024-07-02 14:45:42
Moderate: ghostscript security update
2024-09-03 00:00:00
ghostscript vulnerabilities
2024-06-17 17:35:07
almalinux
almalinux
Moderate: ghostscript security update
2024-09-03 00:00:00
mageia
mageia
Updated ghostscript packages fix security vulnerabilities
2024-05-23 07:22:43
amazon
amazon
Medium: ghostscript
2024-08-01 03:01:00
Important: ghostscript
2024-07-18 02:00:00
fedora
fedora
[SECURITY] Fedora 40 Update: ghostscript-10.02.1-10.fc40
2024-07-02 20:16:52
[SECURITY] Fedora 39 Update: ghostscript-10.02.1-5.fc39
2024-07-09 01:42:21
[SECURITY] Fedora 39 Update: ghostscript-10.02.1-7.fc39
2024-07-24 12:12:31
debian
debian
[SECURITY] [DSA 5692-1] ghostscript security update
2024-05-15 20:07:17
ubuntu
ubuntu
Ghostscript vulnerabilities
2024-06-17 00:00:00
cvelist
cvelist
vulnrichment
vulnrichment
alpinelinux
alpinelinux
redhatcve
redhatcve
ubuntucve
ubuntucve
cve
cve
nvd
nvd
debiancve
debiancve
wolfi
wolfi
CVE-2024-33869 vulnerabilities
2024-09-19 21:18:36
CVE-2024-33870 vulnerabilities
2024-09-19 21:18:36
CVE-2024-29510 vulnerabilities
2024-09-19 21:18:36
veracode
veracode
Remote Code Execution
2024-05-18 20:55:19
attackerkb
attackerkb
CVE-2024-29510
2024-07-03 00:00:00
metasploit
metasploit
Ghostscript Command Execution via Format String
2024-07-09 16:34:27
zdt
zdt
Ghostscript Command Execution / Format String Exploit
2024-07-22 00:00:00
githubexploit
githubexploit
Exploit for CVE-2024-29510
2024-07-09 13:27:40
packetstorm
packetstorm
Ghostscript Command Execution / Format String
2024-07-22 00:00:00
thn
thn
CISA Warns of Actively Exploited RCE Flaw in GeoServer GeoTools Software
2024-07-16 04:01:00
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up 07/26/2024
2024-07-26 18:07:13
CVSS3
6.3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
AI Score
7.8
Confidence
Low
Related for OSV:SUSE-SU-2024:2292-1