Lucene search
MitreCVELIST:CVE-2024-33869HistoryJul 03, 2024 - 12:00 a.m.
CVE-2024-33869
2024-07-0300:00:00
mitre
www.cve.org
1
artifex ghostscript 10.03.1
path traversal
command execution
crafted postscript document
path reduction
%pipe% restrictions
0.0004 Low
EPSS
Percentile
9.1%
An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur (via a crafted PostScript document) because of path reduction in base/gpmisc.c. For example, restrictions on use of %pipe% can be bypassed via the aa/…/%pipe%command# output filename.
Related
ubuntucve
ubuntucve
CVE-2024-33869
2024-05-09 00:00:00
debiancve
debiancve
CVE-2024-33869
2024-07-03 19:15:03
cve
cve
CVE-2024-33869
2024-07-03 19:15:03
nvd
nvd
CVE-2024-33869
2024-07-03 19:15:03
redhatcve
redhatcve
CVE-2024-33869
2024-06-24 16:22:28
alpinelinux
alpinelinux
CVE-2024-33869
2024-07-03 19:15:03
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:2292-1)
2024-07-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:2276-1)
2024-07-03 00:00:00
Mageia: Security Advisory (MGASA-2024-0192)
2024-05-24 00:00:00
nessus
nessus
SUSE SLES12 Security Update : ghostscript (SUSE-SU-2024:2276-1)
2024-07-03 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : ghostscript (SUSE-SU-2024:2292-1)
2024-07-04 00:00:00
Artifex Ghostscript < 10.03.1 Multiple Vulnerabilities
2024-06-13 00:00:00
mageia
mageia
Updated ghostscript packages fix security vulnerabilities
2024-05-23 07:22:43
debian
debian
[SECURITY] [DSA 5692-1] ghostscript security update
2024-05-15 20:07:17
ubuntu
ubuntu
Ghostscript vulnerabilities
2024-06-17 00:00:00
osv
osv
ghostscript vulnerabilities
2024-06-17 17:35:07
ghostscript - security update
2024-05-15 00:00:00