Lucene search
K

243 matches found

NVD
NVD
added 2024/07/03 7:15 p.m.76 views

CVE-2024-29510

Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device...

6.3CVSS0.27992EPSS
Exploits6References4
OSV
OSV
added 2024/07/03 7:15 p.m.2 views

DEBIAN-CVE-2024-29510

Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device...

6.3CVSS6.8AI score0.27992EPSS
Exploits6References1
OSV
OSV
added 2024/07/03 7:15 p.m.29 views

CVE-2024-29510

Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device...

6.3CVSS7AI score0.27992EPSS
Exploits6References4
OSV
OSV
added 2024/07/03 11:32 a.m.15 views

SUSE-SU-2024:2292-1 Security update for ghostscript

This update for ghostscript fixes the following issues: - CVE-2024-29510: Fixed an arbitrary path traversal when running in a permitted path bsc1226945. - CVE-2024-33870: Fixed a format string injection that could lead to command execution bsc1226944. - CVE-2024-33869: Fixed a path validation...

6.3CVSS6.7AI score0.27992EPSS
Exploits6References7
VulnCheck KEV
VulnCheck KEV
added 2024/07/03 12:0 a.m.5 views

VulnCheck KEV: CVE-2024-29510

Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device...

6.3CVSS5.8AI score0.27992EPSS
Exploits6References1
Vulnrichment
Vulnrichment
added 2024/07/03 12:0 a.m.29 views

CVE-2024-29510

Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device...

7.1AI score0.27992EPSS
Exploits6References3
Cvelist
Cvelist
added 2024/07/03 12:0 a.m.35 views

CVE-2024-29510

Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device...

0.27992EPSS
Exploits6References3
ATTACKERKB
ATTACKERKB
added 2024/07/03 12:0 a.m.147 views

CVE-2024-29510

Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device. Recent assessments: cdelafuente-r7 at August 13, 2024 10:25am UTC reported: Ghostscript is vulnerable to a critical format string vulnerability that affects...

6.3CVSS7.5AI score0.27992EPSS
In wildExploits6References4
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.34 views

SUSE SLES12 Security Update : ghostscript (SUSE-SU-2024:2276-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2276-1 advisory. - CVE-2024-29510: Fixed an arbitrary path traversal when running in a permitted path bsc1226945. - CVE-2024-33870: Fixed a format...

6.3CVSS7.5AI score0.27992EPSS
Exploits6References10
OSV
OSV
added 2024/07/02 2:45 p.m.12 views

SUSE-SU-2024:2276-1 Security update for ghostscript

This update for ghostscript fixes the following issues: - CVE-2024-29510: Fixed an arbitrary path traversal when running in a permitted path bsc1226945. - CVE-2024-33870: Fixed a format string injection that could lead to command execution bsc1226944. - CVE-2024-33869: Fixed a path validation...

6.3CVSS6.7AI score0.27992EPSS
Exploits6References7
AstraLinux
AstraLinux
added 2024/06/26 1:32 p.m.5 views

Astra Linux – Vulnerability in GhostScript

Artifex Ghostscript prior to version 10.03.1 allows for memory corruption, and enables SAFER sandbox bypass, through format string injection using a uniprint device...

6.3CVSS6.8AI score0.27992EPSS
Exploits6References3
Positive Technologies
Positive Technologies
added 2024/05/09 12:0 a.m.3 views

PT-2024-4558

Name of the Vulnerable Software and Affected Versions Artifex Ghostscript versions prior to 10.03.1 Description The vulnerability in Artifex Ghostscript is related to a format string injection in the uniprint device, which can lead to memory corruption and allow an attacker to bypass the -dSAFER...

6.3CVSS8.2AI score0.27992EPSS
Exploits6References122
OSV
OSV
added 2024/05/09 12:0 a.m.1 views

UBUNTU-CVE-2024-29510

Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device...

6.3CVSS7.3AI score0.27992EPSS
Exploits6References4
OSV
OSV
added 2023/05/01 3:15 p.m.3 views

CVE-2023-25492

A valid, authenticated user may be able to trigger a denial of service of the XCC web user interface or other undefined behavior through a format string injection vulnerability in a web interface API...

8.8CVSS7.3AI score0.00506EPSS
Exploits0References1
Prion
Prion
added 2023/05/01 3:15 p.m.12 views

Format string

A valid, authenticated user may be able to trigger a denial of service of the XCC web user interface or other undefined behavior through a format string injection vulnerability in a web interface API...

6.5CVSS8.4AI score0.00506EPSS
Exploits0References1Affected Software109
CVE
CVE
added 2023/05/01 2:11 p.m.45 views

CVE-2023-25492

Lenovo XClarity Controller (XCC) is affected by CVE-2023-25492, a format-string injection vulnerability in the XCC web interface API that could allow a remote authenticated attacker to trigger a denial of service or other undefined behavior. The issue is confirmed across multiple advisories (Red ...

8.8CVSS8.3AI score0.00506EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/05/01 2:11 p.m.30 views

CVE-2023-25492

A valid, authenticated user may be able to trigger a denial of service of the XCC web user interface or other undefined behavior through a format string injection vulnerability in a web interface API...

6.3CVSS8.6AI score0.00506EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/05/01 2:11 p.m.6 views

CVE-2023-25492

A valid, authenticated user may be able to trigger a denial of service of the XCC web user interface or other undefined behavior through a format string injection vulnerability in a web interface API...

6.3CVSS8.5AI score0.00506EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/05/01 12:0 a.m.4 views

PT-2023-20111 · Xcc · Xcc

Name of the Vulnerable Software and Affected Versions: XCC affected versions not specified Description: A valid, authenticated user may be able to trigger a denial of service of the XCC web user interface or other undefined behavior through a format string injection vulnerability in a web interfa...

8.8CVSS8.5AI score0.00506EPSS
Exploits0References4
OSV
OSV
added 2022/10/25 5:15 p.m.3 views

CVE-2022-35885

Four format string injection vulnerabilities exist in the web interface /action/wirelessConnect functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9Z and 6.9X. A specially-crafted HTTP request can lead to memory corruption, information disclosure and denial of service. An attacke...

8.8CVSS5.8AI score
Exploits0References1
Rows per page
Query Builder