Remote Code Execution

2024-05-1820:55:19

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

ghostscript

pdf

remote code execution

denial of service

arbitrary code

vulnerability

7.9 High

AI Score

Confidence

High

0 Low

EPSS

Percentile

0.0%

JSON

Ghostscript, the GPL PostScript/PDF interpreter is vulnerable to Remote Code Execution. The vulnerability is due to multiple security issues which can result in denial of service and potentially the execution of arbitrary code if malformed document files are processed.

CPENameOperatorVersion
ghostscript:bullseyeeq9.52.1~dfsg-1
ghostscript:sideq9.53.3~dfsg-5
ghostscript:bullseyeeq9.52.1~dfsg-1
ghostscript:sideq9.53.3~dfsg-5