Lucene search

K

MitreCVELIST:CVE-2018-15911

HistoryAug 28, 2018 - 4:00 a.m.

CVE-2018-15911

2018-08-2804:00:00

mitre

www.cve.org

1

6.7 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.3%

In Artifex Ghostscript 9.23 before 2018-08-24, attackers able to supply crafted PostScript could use uninitialized memory access in the aesdecode operator to crash the interpreter or potentially execute code.

References

git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=8e9ce5016db968b40e4ec255a3005f2786cce45f

www.securityfocus.com/bid/105122

access.redhat.com/errata/RHSA-2018:3834

bugs.ghostscript.com/show_bug.cgi?id=699665

kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44101

lists.debian.org/debian-lts-announce/2018/09/msg00015.html

security.gentoo.org/glsa/201811-12

support.f5.com/csp/article/K22141757?utm_source=f5support&amp%3Butm_medium=RSS

usn.ubuntu.com/3768-1/

www.debian.org/security/2018/dsa-4288

www.kb.cert.org/vuls/id/332928

6.7 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.3%

Related for CVELIST:CVE-2018-15911

osv3 nvd1 debiancve1 alpinelinux1 cve1 prion1 ubuntucve1 veracode1 redhatcve1 freebsd1 nessus34 f51 openvas20 fedora3 oraclelinux2 centos1 redhat1 ibm1 debian2 amazon1 mageia1 ubuntu1 suse2 gentoo1