Lucene search
K

26 matches found

Oracle linux
Oracle linux
added 2024/09/17 12:0 a.m.332 views

ghostscript security update

9.25-5.0.1 - Fixes CVE-2024-33871 OPVP device arbitrary code execution via custom Driver library...

8.8CVSS9.1AI score0.01425EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/07/15 4:19 p.m.12 views

ghostscript: OPVP device arbitrary code execution via custom Driver library

A flaw was found in Ghostscript. The "Driver" parameter for the "opvp"/"oprp" device specifies the name of a dynamic library and allows any library to be loaded. This flaw allows a malicious user to send a specially crafted document that, when processed by Ghostscript, could potentially lead to...

8.8CVSS6.2AI score0.01425EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/07/15 4:19 p.m.20 views

Important: Red Hat Security Advisory: ghostscript security update

An update for ghostscript is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...

8.8CVSS7.8AI score0.01425EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/07/15 4:12 p.m.6 views

ghostscript: OPVP device arbitrary code execution via custom Driver library

A flaw was found in Ghostscript. The "Driver" parameter for the "opvp"/"oprp" device specifies the name of a dynamic library and allows any library to be loaded. This flaw allows a malicious user to send a specially crafted document that, when processed by Ghostscript, could potentially lead to...

8.8CVSS6.2AI score0.01425EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/07/15 4:10 p.m.23 views

Important: Red Hat Security Advisory: ghostscript security update

An update for ghostscript is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update ...

8.8CVSS7.8AI score0.01425EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/07/15 4:10 p.m.4 views

ghostscript: OPVP device arbitrary code execution via custom Driver library

A flaw was found in Ghostscript. The "Driver" parameter for the "opvp"/"oprp" device specifies the name of a dynamic library and allows any library to be loaded. This flaw allows a malicious user to send a specially crafted document that, when processed by Ghostscript, could potentially lead to...

8.8CVSS6.2AI score0.01425EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/07/15 1:14 p.m.6 views

ghostscript: OPVP device arbitrary code execution via custom Driver library

A flaw was found in Ghostscript. The "Driver" parameter for the "opvp"/"oprp" device specifies the name of a dynamic library and allows any library to be loaded. This flaw allows a malicious user to send a specially crafted document that, when processed by Ghostscript, could potentially lead to...

8.8CVSS6.2AI score0.01425EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/07/10 6:10 p.m.3 views

ghostscript: OPVP device arbitrary code execution via custom Driver library

A flaw was found in Ghostscript. The "Driver" parameter for the "opvp"/"oprp" device specifies the name of a dynamic library and allows any library to be loaded. This flaw allows a malicious user to send a specially crafted document that, when processed by Ghostscript, could potentially lead to...

8.8CVSS6.2AI score0.01425EPSS
Exploits0References4
OSV
OSV
added 2024/07/03 7:15 p.m.4 views

ALPINE-CVE-2024-33871

An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp and oprp devices can have an arbitrary name for a...

8.8CVSS8AI score0.01425EPSS
Exploits0References1
OSV
OSV
added 2024/07/03 7:15 p.m.3 views

DEBIAN-CVE-2024-33871

An issue was discovered in Artifex Ghostscript before 10.03.1. contrib/opvp/gdevopvp.c allows arbitrary code execution via a custom Driver library, exploitable via a crafted PostScript document. This occurs because the Driver parameter for opvp and oprp devices can have an arbitrary name for a...

8.8CVSS8.8AI score0.01425EPSS
Exploits0References1
Rockylinux
Rockylinux
added 2024/07/02 2:11 p.m.27 views

ghostscript security update

An update is available for ghostscript. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Ghostscript suite contains utilities for rendering PostScript and PDF...

8.8CVSS7.2AI score0.01425EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/07/02 12:0 a.m.21 views

Rocky Linux 9 : ghostscript (RLSA-2024:3999)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:3999 advisory. ghostscript: OPVP device arbitrary code execution via custom Driver library CVE-2024-33871 Tenable has extracted the preceding description block directly from th...

8.8CVSS8.6AI score0.01425EPSS
Exploits0References3
OSV
OSV
added 2024/06/25 11:53 a.m.14 views

SUSE-SU-2024:2199-1 Security update for ghostscript

This update for ghostscript fixes the following issues: - CVE-2024-33871: Prevent OPVP device arbitrary code execution via custom Driver library. bsc1225491...

8.8CVSS9AI score0.01425EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/06/20 6:19 a.m.5 views

ghostscript: OPVP device arbitrary code execution via custom Driver library

A flaw was found in Ghostscript. The "Driver" parameter for the "opvp"/"oprp" device specifies the name of a dynamic library and allows any library to be loaded. This flaw allows a malicious user to send a specially crafted document that, when processed by Ghostscript, could potentially lead to...

8.8CVSS6.2AI score0.01425EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/06/20 6:0 a.m.369 views

Important: Red Hat Security Advisory: ghostscript security update

An update for ghostscript is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

8.8CVSS7.8AI score0.01425EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/06/20 6:0 a.m.7 views

ghostscript: OPVP device arbitrary code execution via custom Driver library

A flaw was found in Ghostscript. The "Driver" parameter for the "opvp"/"oprp" device specifies the name of a dynamic library and allows any library to be loaded. This flaw allows a malicious user to send a specially crafted document that, when processed by Ghostscript, could potentially lead to...

8.8CVSS6.2AI score0.01425EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/06/20 5:56 a.m.28 views

Important: Red Hat Security Advisory: ghostscript security update

An update for ghostscript is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

8.8CVSS7.8AI score0.01425EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/20 12:0 a.m.28 views

RHEL 9 : ghostscript (RHSA-2024:4014)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4014 advisory. The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats ...

8.8CVSS8.6AI score0.01425EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2024/06/20 12:0 a.m.25 views

ghostscript security update

9.27-13 - CVE-2024-33871 ghostscript: OPVP device arbitrary code execution via custom Driver library...

8.8CVSS7.8AI score0.01425EPSS
Exploits0
Oracle linux
Oracle linux
added 2024/06/20 12:0 a.m.33 views

ghostscript security update

9.54.0-16 - RHEL-39110 fix regression discovered in OPVP device 9.54.0-15 - RHEL-39110 CVE-2024-33871 ghostscript: OPVP device arbitrary code execution via custom Driver library...

8.8CVSS7.7AI score0.01425EPSS
Exploits0
Rows per page
Query Builder