Количество 12
Количество 12
CVE-2019-14869
A flaw was found in all versions of ghostscript 9.x before 9.50, where the `.charkeys` procedure, where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges within the Ghostscript and access files outside of restricted areas or execute commands.
CVE-2019-14869
A flaw was found in all versions of ghostscript 9.x before 9.50, where the `.charkeys` procedure, where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges within the Ghostscript and access files outside of restricted areas or execute commands.
CVE-2019-14869
A flaw was found in all versions of ghostscript 9.x before 9.50, where the `.charkeys` procedure, where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges within the Ghostscript and access files outside of restricted areas or execute commands.
CVE-2019-14869
A flaw was found in all versions of ghostscript 9.x before 9.50, where ...
openSUSE-SU-2019:2535-1
Security update for ghostscript
openSUSE-SU-2019:2534-1
Security update for ghostscript
SUSE-SU-2019:2983-1
Security update for ghostscript
SUSE-SU-2019:2981-1
Security update for ghostscript
GHSA-c87p-jj8p-c38g
A flaw was found in all versions of ghostscript 9.x before 9.28, where the `.charkeys` procedure, where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges within the Ghostscript and access files outside of restricted areas or execute commands.
ELSA-2019-3890
ELSA-2019-3890: ghostscript security update (IMPORTANT)
ELSA-2019-3888
ELSA-2019-3888: ghostscript security update (IMPORTANT)
BDU:2020-01769
Уязвимость процедуры .charkeys интерпретатора PostScript/PDF Ghostscript, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-14869 A flaw was found in all versions of ghostscript 9.x before 9.50, where the `.charkeys` procedure, where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges within the Ghostscript and access files outside of restricted areas or execute commands. | CVSS3: 8.8 | 0% Низкий | около 6 лет назад |
 | CVE-2019-14869 A flaw was found in all versions of ghostscript 9.x before 9.50, where the `.charkeys` procedure, where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges within the Ghostscript and access files outside of restricted areas or execute commands. | CVSS3: 7.3 | 0% Низкий | около 6 лет назад |
 | CVE-2019-14869 A flaw was found in all versions of ghostscript 9.x before 9.50, where the `.charkeys` procedure, where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges within the Ghostscript and access files outside of restricted areas or execute commands. | CVSS3: 8.8 | 0% Низкий | около 6 лет назад |
| CVE-2019-14869 A flaw was found in all versions of ghostscript 9.x before 9.50, where ... | CVSS3: 8.8 | 0% Низкий | около 6 лет назад |
 | openSUSE-SU-2019:2535-1 Security update for ghostscript | 0% Низкий | около 6 лет назад | |
| openSUSE-SU-2019:2534-1 Security update for ghostscript | 0% Низкий | около 6 лет назад | |
| SUSE-SU-2019:2983-1 Security update for ghostscript | 0% Низкий | около 6 лет назад | |
| SUSE-SU-2019:2981-1 Security update for ghostscript | 0% Низкий | около 6 лет назад | |
| GHSA-c87p-jj8p-c38g A flaw was found in all versions of ghostscript 9.x before 9.28, where the `.charkeys` procedure, where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges within the Ghostscript and access files outside of restricted areas or execute commands. | 0% Низкий | больше 3 лет назад | |
| ELSA-2019-3890 ELSA-2019-3890: ghostscript security update (IMPORTANT) | около 6 лет назад | ||
| ELSA-2019-3888 ELSA-2019-3888: ghostscript security update (IMPORTANT) | около 6 лет назад | ||
 | BDU:2020-01769 Уязвимость процедуры .charkeys интерпретатора PostScript/PDF Ghostscript, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании | CVSS3: 8.8 | 0% Низкий | около 6 лет назад |
Уязвимостей на страницу