Ghostscript@10.01.2 Security Vulnerabilities and Issues — Ghostscript@10.01.2 CVE List

Lucene search

ArtifexGhostscript10.01.2

2 matches found

CVE•added 2023/09/18 8:15 a.m.•726 views

CVE-2023-43115

In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via crafted PostScript documents because they can switch to the IJS device, or change the IjsServer parameter, after SAFER has been activated. NOTE: it is a documented risk that the IJS server can be spe...

8.8CVSS8.8AI score0.20478EPSS

CVE•added 2023/06/25 10:15 p.m.•146 views

CVE-2023-36664

Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices (with the %pipe% prefix or the | pipe character prefix).

7.8CVSS7.7AI score0.04524EPSS