Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

2801 matches found

NVD
NVDadded 2024/07/03 7:15 p.m.19 views

CVE-2024-33871

An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp and oprp devices can have an arbitrary name for a...

8.8CVSS0.01425EPSS
Exploits0References3
Cvelist
Cvelistadded 2024/07/03 12:0 a.m.21 views

CVE-2024-33869

An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur via a crafted PostScript document because of path reduction in base/gpmisc.c. For example, restrictions on use of %pipe% can be bypassed via the aa/../%pipe%command output filename...

0.00447EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/07/03 12:0 a.m.19 views

CVE-2024-33869

An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur via a crafted PostScript document because of path reduction in base/gpmisc.c. For example, restrictions on use of %pipe% can be bypassed via the aa/../%pipe%command output filename...

6.9AI score0.00447EPSS
Exploits0References2
CNNVD
CNNVDadded 2024/07/03 12:0 a.m.2 views

Artifex Ghostscript Security Vulnerability

Artifex Ghostscript is a set of free software compiled by Artifex, Inc. based on Adobe, PostScript, and the Page Description Language for Portable Document Format PDL. A security vulnerability exists in Artifex Ghostscript versions prior to 10.03.1, which can be exploited to traverse paths to...

6.3CVSS8.8AI score0.00515EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2024/07/03 12:0 a.m.23 views

CVE-2024-33870

An issue was discovered in Artifex Ghostscript before 10.03.1. There is path traversal via a crafted PostScript document to arbitrary files if the current directory is in the permitted paths. For example, there can be a transformation of ../../foo to ./../../foo and this will grant access if ./ i...

6.7AI score0.00515EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2024/07/03 12:0 a.m.25 views

CVE-2024-33871

An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp and oprp devices can have an arbitrary name for a...

7.5AI score0.01425EPSS
Exploits0References3
Cvelist
Cvelistadded 2024/07/03 12:0 a.m.21 views

CVE-2024-33871

An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp and oprp devices can have an arbitrary name for a...

0.01425EPSS
Exploits0References3
OSV
OSVadded 2024/07/02 2:11 p.m.21 views

RLSA-2024:3999 Important: ghostscript security update

The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fixes: ghostscript: OPVP device arbitrary code execution via custom Driver library...

8.8CVSS9.1AI score0.01425EPSS
Exploits0References2
OSV
OSVadded 2024/07/02 2:10 p.m.21 views

RLSA-2024:4000 Important: ghostscript security update

The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fixes: ghostscript: OPVP device arbitrary code execution via custom Driver library...

8.8CVSS9.1AI score0.01425EPSS
Exploits0References2
AstraLinux
AstraLinuxadded 2024/06/26 1:32 p.m.1 views

Astra Linux - уязвимость в ghostscript

An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur via a crafted PostScript document because of path reduction in base/gpmisc.c. For example, restrictions on use of %pipe% can be bypassed via the aa/../%pipe%command output filename...

5.3CVSS7.3AI score0.00447EPSS
Exploits0References3
AstraLinux
AstraLinuxadded 2024/06/26 1:32 p.m.3 views

Astra Linux – Vulnerability in GhostScript

A issue was discovered in Artifex Ghostscript prior to version 10.03.1. The file contrib/opvp/gdevopvp.c allows for arbitrary code execution through a custom Driver library, which can be exploited using a crafted PostScript document. This occurs because the Driver parameter for opvp and oprp...

8.8CVSS8.3AI score0.01425EPSS
Exploits0References3
AstraLinux
AstraLinuxadded 2024/06/26 1:32 p.m.1 views

Astra Linux - уязвимость в ghostscript

An issue was discovered in Artifex Ghostscript before 10.03.1. There is path traversal via a crafted PostScript document to arbitrary files if the current directory is in the permitted paths. For example, there can be a transformation of ../../foo to ./../../foo and this will grant access if ./ i...

6.3CVSS7AI score0.00515EPSS
Exploits0References3
SUSE CVE
SUSE CVEadded 2024/06/25 11:21 p.m.1 views

SUSE CVE-2024-33869

An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur via a crafted PostScript document because of path reduction in base/gpmisc.c. For example, restrictions on use of %pipe% can be bypassed via the aa/../%pipe%command output filename...

5.3CVSS9.3AI score0.00447EPSS
Exploits0References6
SUSE CVE
SUSE CVEadded 2024/06/25 11:21 p.m.2 views

SUSE CVE-2024-33870

An issue was discovered in Artifex Ghostscript before 10.03.1. There is path traversal via a crafted PostScript document to arbitrary files if the current directory is in the permitted paths. For example, there can be a transformation of ../../foo to ./../../foo and this will grant access if ./ i...

6.8CVSS9.2AI score0.00515EPSS
Exploits0References6
RedHat Linux
RedHat Linuxadded 2024/06/20 6:19 a.m.34 views

Important: Red Hat Security Advisory: ghostscript security update

An update for ghostscript is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.8CVSS7.8AI score0.01425EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2024/06/20 6:0 a.m.367 views

Important: Red Hat Security Advisory: ghostscript security update

An update for ghostscript is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

8.8CVSS7.8AI score0.01425EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2024/06/20 12:0 a.m.21 views

RHEL 9 : ghostscript (RHSA-2024:3999)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:3999 advisory. The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats ...

8.8CVSS8.6AI score0.01425EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2024/06/20 12:0 a.m.27 views

RHEL 8 : ghostscript (RHSA-2024:4000)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4000 advisory. The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats ...

8.8CVSS8.6AI score0.01425EPSS
Exploits0References4
AlmaLinux
AlmaLinuxadded 2024/06/20 12:0 a.m.28 views

Important: ghostscript security update

The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fixes: ghostscript: OPVP device arbitrary code execution via custom Driver library...

8.8CVSS7.3AI score0.01425EPSS
Exploits0References4
AlmaLinux
AlmaLinuxadded 2024/06/20 12:0 a.m.48 views

Important: ghostscript security update

The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fixes: ghostscript: OPVP device arbitrary code execution via custom Driver library...

8.8CVSS7.3AI score0.01425EPSS
Exploits0References4
Rows per page
Query Builder