CVE-2024-46956

Опубликовано: 10 нояб. 2024

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 7.8

Описание

An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution.

Релиз	Статус	Примечание
devel	released	10.03.1~dfsg1-0ubuntu3
esm-infra/bionic	released	9.26~dfsg+0-0ubuntu0.18.04.18+esm3
esm-infra/focal	not-affected	9.50~dfsg-5ubuntu4.14
esm-infra/xenial	released	9.26~dfsg+0-0ubuntu0.16.04.14+esm8
focal	released	9.50~dfsg-5ubuntu4.14
jammy	released	9.55.0~dfsg1-0ubuntu5.10
noble	released	10.02.1~dfsg1-0ubuntu7.4
oracular	released	10.03.1~dfsg1-0ubuntu2.1
upstream	released	10.04.0~dfsg-1

Показывать по

Ссылки на источники

EPSS

Процентиль: 40%

0.0018

Низкий

7.8 High

CVSS3

Связанные уязвимости

CVE-2024-46956

CVSS3: 7.8

redhat

7 месяцев назад

An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution.

CVE-2024-46956

CVSS3: 7.8

nvd

7 месяцев назад

An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution.

CVE-2024-46956

CVSS3: 7.8

debian

7 месяцев назад

An issue was discovered in psi/zfile.c in Artifex Ghostscript before 1 ...

GHSA-jrvf-vccr-mvp6

CVSS3: 7.8

github

7 месяцев назад

An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution.

BDU:2024-09737

CVSS3: 7.8

fstec

9 месяцев назад

Уязвимость компонента psi/zfile.c набора программного обеспечения для обработки, преобразования и генерации документов Ghostscript, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 40%

0.0018

Низкий

7.8 High

CVSS3

CVE-2024-46956

Описание

Пакет ghostscript

Ссылки на источники

Связанные уязвимости