Lucene search
HistoryJul 03, 2024 - 7:15 p.m.
CVE-2024-33870
artifex ghostscript
path traversal
postscript document
0.0004 Low
EPSS
Percentile
9.1%
An issue was discovered in Artifex Ghostscript before 10.03.1. There is path traversal (via a crafted PostScript document) to arbitrary files if the current directory is in the permitted paths. For example, there can be a transformation of …/…/foo to ./…/…/foo and this will grant access if ./ is permitted.
Related
debiancve
debiancve
CVE-2024-33870
2024-07-03 19:15:03
redhatcve
redhatcve
CVE-2024-33870
2024-06-24 16:23:18
cvelist
cvelist
CVE-2024-33870
2024-07-03 00:00:00
ubuntucve
ubuntucve
CVE-2024-33870
2024-05-09 00:00:00
alpinelinux
alpinelinux
CVE-2024-33870
2024-07-03 19:15:03
cve
cve
CVE-2024-33870
2024-07-03 19:15:03
fedora
fedora
[SECURITY] Fedora 40 Update: ghostscript-10.02.1-10.fc40
2024-07-02 20:16:52
nessus
nessus
Fedora 40 : ghostscript (2024-f433c5c4da)
2024-07-02 00:00:00
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : ghostscript (SUSE-SU-2024:2292-1)
2024-07-04 00:00:00
SUSE SLES12 Security Update : ghostscript (SUSE-SU-2024:2276-1)
2024-07-03 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:2276-1)
2024-07-03 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:2292-1)
2024-07-04 00:00:00
Mageia: Security Advisory (MGASA-2024-0192)
2024-05-24 00:00:00
mageia
mageia
Updated ghostscript packages fix security vulnerabilities
2024-05-23 07:22:43
debian
debian
[SECURITY] [DSA 5692-1] ghostscript security update
2024-05-15 20:07:17
ubuntu
ubuntu
Ghostscript vulnerabilities
2024-06-17 00:00:00
osv
osv
ghostscript vulnerabilities
2024-06-17 17:35:07
ghostscript - security update
2024-05-15 00:00:00