Ghostscript@10.04.0 Security Vulnerabilities and Issues — Ghostscript@10.04.0 CVE List

Lucene search

ArtifexGhostscript10.04.0

6 matches found

CVE•added 2024/11/10 10:15 p.m.•89 views

CVE-2024-46956

An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution.

7.8CVSS7.2AI score0.00184EPSS

CVE•added 2024/11/10 9:15 p.m.•84 views

CVE-2024-46951

An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. An unchecked Implementation pointer in Pattern color space could lead to arbitrary code execution.

7.8CVSS7.1AI score0.00062EPSS

CVE•added 2024/11/10 10:15 p.m.•77 views

CVE-2024-46953

An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string (for the output filename) results in path truncation, and possible path traversal and code execution.

7.8CVSS7.2AI score0.00062EPSS

CVE•added 2024/11/10 10:15 p.m.•71 views

CVE-2024-46954

An issue was discovered in decode_utf8 in base/gp_utf8.c in Artifex Ghostscript before 10.04.0. Overlong UTF-8 encoding leads to possible ../ directory traversal.

8.4CVSS6.4AI score0.00057EPSS

CVE•added 2024/11/10 10:15 p.m.•63 views

CVE-2024-46952

An issue was discovered in pdf/pdf_xref.c in Artifex Ghostscript before 10.04.0. There is a buffer overflow during handling of a PDF XRef stream (related to W array values).

8.4CVSS6.9AI score0.00026EPSS

CVE•added 2024/11/10 10:15 p.m.•63 views

CVE-2024-46955

An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. There is an out-of-bounds read when reading color in Indexed color space.

5.5CVSS6.4AI score0.00051EPSS