CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2025/01/16 12:0 a.m.•3 views

PT-2025-3302 · Unknown +2 · Matrix Media Repo +4

Name of the Vulnerable Software and Affected Versions: Matrix Media Repo versions prior to 1.3.8 Description: The issue arises when SVG or JPEGXL thumbnailers are enabled, allowing a user to upload a file that claims to be one of these types and request a thumbnail, potentially invoking a differe...

8.9CVSS7.7AI score0.02218EPSS

Exploits2References90

OpenVAS•added 2025/01/14 12:0 a.m.•10 views

Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2025-1021)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OpenVAS•added 2025/01/14 12:0 a.m.•8 views

Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2025-1038)

Tenable Nessus•added 2025/01/14 12:0 a.m.•17 views

EulerOS 2.0 SP9 : ghostscript (EulerOS-SA-2025-1055)

According to the versions of the ghostscript packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver...

Tenable Nessus•added 2025/01/14 12:0 a.m.•17 views

EulerOS 2.0 SP9 : ghostscript (EulerOS-SA-2025-1038)

OpenVAS•added 2025/01/14 12:0 a.m.•12 views

Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2025-1055)

OpenVAS•added 2025/01/14 12:0 a.m.•11 views

Huawei EulerOS: Security Advisory for ghostscript (EulerOS-SA-2025-1004)

Rosalinux•added 2025/01/13 9:39 a.m.•14 views

Advisory ROSA-SA-2025-2549

Software: ghostscript 9.25 OS: rosa-server79 packageevrstring: ghostscript-9.25-5.0.3.res7 CVE-ID: CVE-2018-19478 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in Artifex Ghostscript allows an attacker to run a lengthy calculation when processing a PDF file. CVE-STATUS: The vulnerabili...

5.5CVSS6.5AI score0.00643EPSS

Exploits1

Tenable Nessus•added 2025/01/13 12:0 a.m.•58 views

EulerOS 2.0 SP10 : ghostscript (EulerOS-SA-2025-1021)

According to the versions of the ghostscript packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in Artifex Ghostscript before 10.03.1. psi/zmisc1.c, when SAFER mode is used, allows eexec seeds other than the Type ...

Tenable Nessus•added 2025/01/13 12:0 a.m.•15 views

EulerOS 2.0 SP10 : ghostscript (EulerOS-SA-2025-1004)

According to the versions of the ghostscript packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : An issue was discovered in Artifex Ghostscript before 10.03.1. psi/zmisc1.c, when SAFER mode is used, allows eexec seeds other than the Type ...

Positive Technologies•added 2025/01/01 12:0 a.m.•3 views

PT-2025-11335 · Unknown +4 · Ghostscript +4

Name of the Vulnerable Software and Affected Versions: Debian Linux affected versions not specified Description: The issue is related to a buffer overflow that occurs during the serialization of DollarBlend in font. Additionally, there are package vulnerabilities in ghostscript. Recommendations: ...

9.8CVSS6.1AI score0.00212EPSS

Exploits0References75

Positive Technologies•added 2025/01/01 12:0 a.m.•2 views

PT-2025-38680

Name of the Vulnerable Software and Affected Versions Artifex Ghostscript versions through 10.05.1 Description The ocr begin page function within devices/gdevpdfocr.c is susceptible to an integer overflow, which can result in a heap-based buffer overflow in the ocr line8 function. Recommendations...

5.5CVSS6AI score0.00026EPSS

Exploits0References48

Positive Technologies•added 2025/01/01 12:0 a.m.•3 views

PT-2025-11342 · Unknown +1 · Ghostscript +1

Name of the Vulnerable Software and Affected Versions: Debian Linux affected versions not specified Description: The issue allows access to arbitrary files through a truncated path with invalid UTF-8. It is also related to package vulnerabilities in ghostscript. Recommendations: At the moment,...

10CVSS6AI score0.00212EPSS

Exploits0References63

Positive Technologies•added 2025/01/01 12:0 a.m.•2 views

PT-2025-11338 · Unknown +3 · Ghostscript +3

Name of the Vulnerable Software and Affected Versions: Debian Linux affected versions not specified Description: The issue is related to a buffer overflow that occurs with long TTF font names in ghostscript. Recommendations: At the moment, there is no information about a newer version that contai...

9.8CVSS5.7AI score0.00212EPSS

Exploits0References65

Positive Technologies•added 2025/01/01 12:0 a.m.•3 views

PT-2025-11339 · Unknown +3 · Ghostscript +3

Name of the Vulnerable Software and Affected Versions: Debian Linux affected versions not specified ghostscript affected versions not specified Description: The issue is caused by a buffer overflow resulting from an oversized Type 4 function in a PDF. It is also related to package vulnerabilities...

9.8CVSS6.2AI score0.00212EPSS

Exploits0References70

Tenable Nessus•added 2024/12/23 12:0 a.m.•18 views

Amazon Linux 2 : ghostscript (ALAS-2024-2708)

The version of ghostscript installed on the remote host is prior to 9.54.0-9. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2708 advisory. PS interpreter - check the type of the Pattern Implementation NOTE:...

7.8CVSS7.9AI score0.00301EPSS

Exploits0References8

Positive Technologies•added 2024/12/20 12:0 a.m.•2 views

PT-2024-40645 · Git +1 · Ghostscript

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. Technical details include the crash type being a Heap-buffer-overflow READ 12, and the crash...

6.8AI score