CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-13458

Malware in sbrugna...

7.3CVSS6.5AI score0.01364EPSS

Exploits0References22

SUSE CVE•added 2023/02/15 4:17 a.m.•1 views

SUSE CVE-2019-3838

It was found that the forceput operator could be extracted from the DefineResource method in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER...

8.8CVSS6.8AI score0.01364EPSS

Exploits0References27

Tenable Nessus•added 2021/01/29 12:0 a.m.•40 views

CentOS 8 : ghostscript (CESA-2019:0971)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2019:0971 advisory. - ghostscript: superexec operator is available 700585 CVE-2019-3835 - ghostscript: forceput in DefineResource is still accessible 700576 CVE-2019-3838 ...

7.8CVSS6.7AI score0.60542EPSS

Exploits2References4

OpenVAS•added 2020/01/23 12:0 a.m.•27 views

Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2019-1289)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3CVSS6.2AI score0.01643EPSS

Exploits0References2

OpenVAS•added 2020/01/23 12:0 a.m.•20 views

Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2019-1364)

7.3CVSS6.1AI score0.01364EPSS

Exploits0References2

RedhatCVE•added 2019/10/09 6:35 a.m.•35 views

CVE-2019-3838

It was found that the forceput operator could be extracted from the DefineResource method. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER. Mitigation Please refer to the "Mitigation"...

9.3CVSS0.6AI score0.9181EPSS

Exploits4References3

Tenable Nessus•added 2019/08/12 12:0 a.m.•32 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : ghostscript Multiple Vulnerabilities (NS-SA-2019-0071)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has ghostscript packages installed that are affected by multiple vulnerabilities: - It was found that the forceput operator could be extracted from the DefineResource method. A specially crafted PostScript file could use this...

7.3CVSS6.6AI score0.01643EPSS

Exploits0References3

Veracode•added 2019/05/16 3:58 a.m.•26 views

Access Restriction Bypass

The Ghostscript is vulnerable to access restriction bypass.Attacker can use malicious PostScript to trigger the attack since forceput in DefineResource is still accessible...

5.5CVSS5.7AI score0.01364EPSS

Exploits0References20Affected Software1

Tenable Nessus•added 2019/05/14 12:0 a.m.•27 views

EulerOS Virtualization 3.0.1.0 : ghostscript (EulerOS-SA-2019-1465)

According to the versions of the ghostscript package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - It was found that the forceput operator could be extracted from the DefineResource method. A specially crafted PostScript fil...

7.3CVSS6.7AI score0.01643EPSS

Exploits0References3

Tenable Nessus•added 2019/04/30 12:0 a.m.•26 views

EulerOS 2.0 SP3 : ghostscript (EulerOS-SA-2019-1289)

According to the versions of the ghostscript packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - ghostscript: superexec operator is available 700585 CVE-2019-3835 - ghostscript: forceput in DefineResource is still accessible 700576...

7.3CVSS6.7AI score0.01643EPSS

Exploits0References3

Tenable Nessus•added 2019/04/30 12:0 a.m.•28 views

EulerOS 2.0 SP5 : ghostscript (EulerOS-SA-2019-1290)

7.3CVSS6.7AI score0.01643EPSS

Exploits0References3

Tenable Nessus•added 2019/04/30 12:0 a.m.•33 views

EulerOS 2.0 SP2 : ghostscript (EulerOS-SA-2019-1288)

7.3CVSS6.7AI score0.01643EPSS

Exploits0References3

Tenable Nessus•added 2019/04/22 12:0 a.m.•28 views

FreeBSD : Ghostscript -- Security bypass vulnerability (5ed7102e-6454-11e9-9a3a-001cc0382b2f)

Cedric Buissart Red Hat reports : It was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by...

7.3CVSS6.5AI score0.01643EPSS

Exploits0References3

OSV•added 2019/03/25 7:29 p.m.•1 views

ALPINE-CVE-2019-3838

5.5CVSS6.8AI score0.01364EPSS

Exploits0References1

NVD•added 2019/03/25 7:29 p.m.•13 views

CVE-2019-3838

7.3CVSS5.6AI score0.01364EPSS

Exploits0References15

OSV•added 2019/03/25 7:29 p.m.•1 views

DEBIAN-CVE-2019-3838

5.5CVSS6.5AI score0.01364EPSS

Exploits0References1

Prion•added 2019/03/25 7:29 p.m.•19 views

Design/Logic Flaw

4.3CVSS6.9AI score0.01364EPSS

Exploits0References15Affected Software12

Debian CVE•added 2019/03/25 6:30 p.m.•35 views

CVE-2019-3838

7.3CVSS6.7AI score0.01364EPSS

Exploits0

AlpineLinux•added 2019/03/25 6:30 p.m.•30 views

CVE-2019-3838

7.3CVSS5.9AI score0.01364EPSS

Exploits0

Tenable Nessus•added 2019/03/25 12:0 a.m.•24 views

SUSE SLED12 / SLES12 Security Update : ghostscript (SUSE-SU-2019:0719-1)

This update for ghostscript fixes the following issue : Security issue fixed : CVE-2019-3838: Fixed a vulnerability which made forceput operator in DefineResource to be still accessible which could allow access to file system outside of the constraints of -dSAFER bsc1129186. Note that Tenable...

7.3CVSS6.5AI score0.01364EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by