Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

20 matches found

OSV
OSVadded 2025/06/13 2:59 p.m.2 views

CLSA-2025-1749826758 ghostscript: Fix of CVE-2024-46956

CVE-2024-46956: fix out-of-bounds data access in filenameforall to prevent arbitrary code execution...

7.8CVSS7.6AI score0.00301EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2024/11/12 1:13 a.m.16 views

CVE-2024-46956

A flaw was found in Artifex Ghostscript's psi/zfile.c component. This vulnerability allows arbitrary code execution via out-of-bounds data access...

7.8CVSS7.9AI score0.00301EPSS
Exploits0References7
NVD
NVDadded 2024/11/10 10:15 p.m.10 views

CVE-2024-46956

An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution...

7.8CVSS0.00301EPSS
Exploits0References5
OSV
OSVadded 2024/11/10 10:15 p.m.1 views

ALPINE-CVE-2024-46956

An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution...

7.8CVSS8AI score0.00301EPSS
Exploits0References1
OSV
OSVadded 2024/11/10 10:15 p.m.1 views

DEBIAN-CVE-2024-46956

An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution...

7.8CVSS8.1AI score0.00301EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2024/11/10 12:0 a.m.13 views

CVE-2024-46956

An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution...

7.5AI score0.00301EPSS
Exploits0References4
AlpineLinux
AlpineLinuxadded 2024/11/10 12:0 a.m.17 views

CVE-2024-46956

An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution...

7.8CVSS7.2AI score0.00301EPSS
Exploits0
CNNVD
CNNVDadded 2024/11/10 12:0 a.m.1 views

Artifex Ghostscript 安全漏洞

Artifex Ghostscript is a set of free software compiled by Artifex, Inc. based on Adobe, PostScript, and the Portable Document Format page description language. A security vulnerability exists in Artifex Ghostscript prior to version 10.04.0, which is caused by an out-of-bounds data access...

7.8CVSS8AI score0.00301EPSS
Exploits0References3
SUSE Linux
SUSE Linuxadded 2024/11/07 10:11 a.m.2 views

Security update for ghostscript

This update for ghostscript fixes the following issues: CVE-2024-46951: Fixed arbitrary code execution via unchecked "Implementation" pointer in "Pattern" color space bsc1232265. CVE-2024-46953: Fixed integer overflow when parsing the page format results in path truncation, path traversal, code...

7.8CVSS8.3AI score0.00301EPSS
Exploits0References16
OSV
OSVadded 2024/11/07 10:11 a.m.16 views

SUSE-SU-2024:3942-1 Security update for ghostscript

This update for ghostscript fixes the following issues: - CVE-2024-46951: Fixed arbitrary code execution via unchecked 'Implementation' pointer in 'Pattern' color space bsc1232265. - CVE-2024-46953: Fixed integer overflow when parsing the page format results in path truncation, path traversal, co...

7.8CVSS7.2AI score0.00301EPSS
Exploits0References9
OSV
OSVadded 2024/11/01 11:9 a.m.2 views

OESA-2024-2310 ghostscript security update

Ghostscript is an interpreter for PostScript™ and Portable Document Format PDF files. Ghostscript consists of a PostScript interpreter layer, and a graphics library. Security Fixes: VUL-0: CVE-2024-46953: ghostscript: An integer overflow when parsing the page format results in path truncation, pa...

7.8CVSS7.9AI score0.00301EPSS
Exploits0References3
OSV
OSVadded 2024/10/30 12:0 a.m.1 views

UBUNTU-CVE-2024-46956

An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution...

7.8CVSS7.4AI score0.00301EPSS
Exploits0References4
SUSE CVE
SUSE CVEadded 2024/10/23 1:24 p.m.1 views

SUSE CVE-2024-46956

An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution...

7.8CVSS7.9AI score0.00301EPSS
Exploits0References8
NVD
NVDadded 2017/03/07 3:59 p.m.15 views

CVE-2013-5653

The getenv and filenameforall functions in Ghostscript 9.10 ignore the "-dSAFER" argument, which allows remote attackers to read data via a crafted postscript file...

5.5CVSS6.9AI score0.00223EPSS
Exploits0References9
ATTACKERKB
ATTACKERKBadded 2017/03/07 3:59 p.m.3 views

CVE-2013-5653

The getenv and filenameforall functions in Ghostscript 9.10 ignore the "-dSAFER" argument, which allows remote attackers to read data via a crafted postscript file...

5.5CVSS5.6AI score0.00223EPSS
Exploits0References10
CVE
CVEadded 2017/03/07 3:0 p.m.100 views

CVE-2013-5653

CVE-2013-5653 affects Ghostscript and stems from the getenv and filenameforall functions not honoring -dSAFER, enabling an attacker to read environment variables or list directories via a crafted PostScript document. The issue is documented across multiple sources (e.g., NVD description and IBM P...

5.5CVSS6.7AI score0.00223EPSS
Exploits0References9Affected Software1
Debian CVE
Debian CVEadded 2017/03/07 3:0 p.m.28 views

CVE-2013-5653

The getenv and filenameforall functions in Ghostscript 9.10 ignore the "-dSAFER" argument, which allows remote attackers to read data via a crafted postscript file...

5.5CVSS7.3AI score0.00223EPSS
Exploits0
Cent OS
Cent OSadded 2017/01/04 10:39 a.m.415 views

ghostscript security update

CentOS Errata and Security Advisory CESA-2017:0014 An update for ghostscript is now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

9.8CVSS7.2AI score0.03211EPSS
Exploits0References7
RedHat Linux
RedHat Linuxadded 2017/01/04 10:9 a.m.2 views

ghostscript: getenv and filenameforall ignore -dSAFER

It was found that the ghostscript functions getenv and filenameforall did not honor the -dSAFER option, usually used when processing untrusted documents, leading to information disclosure. A specially crafted postscript document could read environment variable and list directory respectively, fro...

5.5CVSS5.8AI score0.00223EPSS
Exploits0References4
OSV
OSVadded 2013/12/31 12:0 a.m.0 views

UBUNTU-CVE-2013-5653

The getenv and filenameforall functions in Ghostscript 9.10 ignore the "-dSAFER" argument, which allows remote attackers to read data via a crafted postscript file...

5.5CVSS6.8AI score0.00223EPSS
Exploits0References6
Rows per page
Query Builder