Lucene search
Redhat.comRH:CVE-2018-15911HistoryOct 12, 2019 - 1:30 a.m.
CVE-2018-15911
2019-10-1201:30:37
redhat.com
access.redhat.com
11
EPSS
0.973
Percentile
99.9%
It was discovered that ghostscript did not properly verify the key used in aesdecode. An attacker could possibly exploit this to bypass the -dSAFER protection and crash ghostscript or, possibly, execute arbitrary code in the ghostscript context via a specially crafted PostScript document.
Mitigation
Please refer to the "Mitigation" section of CVE-2018-16509 : <https://access.redhat.com/security/cve/cve-2018-16509>
Related
osv
osv
debiancve
debiancve
nvd
nvd
alpinelinux
alpinelinux
CVE-2018-15911
2018-08-28 04:29:00
CVE-2018-16802
2018-09-10 16:29:00
prion
prion
Code injection
2018-08-28 04:29:00
Design/Logic Flaw
2018-09-05 06:29:00
Design/Logic Flaw
2018-09-10 16:29:00
cve
cve
ubuntucve
ubuntucve
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:27:31
Privilege Escalation
2019-01-15 09:27:20
Arbitrary Command Execution
2019-01-15 09:27:10
cvelist
cvelist
nessus
nessus
RHEL 6 : ghostscript (RHSA-2018:3760)
2018-12-04 00:00:00
Virtuozzo 6 : ghostscript / ghostscript-devel / ghostscript-doc / etc (VZLSA-2018-3760)
2020-12-22 00:00:00
Slackware 14.2 / current : ghostscript (SSA:2018-256-01)
2018-09-14 00:00:00
amazon
amazon
Important: ghostscript
2018-12-20 00:04:00
Important: ghostscript
2018-10-08 22:17:00
centos
centos
ghostscript security update
2018-12-06 18:54:07
ghostscript security update
2018-12-13 20:45:18
ghostscript security update
2018-10-15 21:01:33
slackware
slackware
[slackware-security] ghostscript
2018-09-13 22:03:55
openvas
openvas
CentOS Update for ghostscript CESA-2018:3760 centos6
2018-12-07 00:00:00
Slackware: Security Advisory (SSA:2018-256-01)
2022-04-21 00:00:00
CentOS Update for ghostscript CESA-2018:3761 centos7
2018-12-18 00:00:00
metasploit
metasploit
Ghostscript Failed Restore Command Execution
2018-09-06 00:56:32
cert
cert
Ghostscript contains multiple -dSAFER sandbox bypass vulnerabilities
2018-08-21 00:00:00
redhatcve
redhatcve
checkpoint_advisories
checkpoint_advisories
Artifex Ghostscript Remote Code Execution (CVE-2018-16509)
2022-09-18 00:00:00
redhat
redhat
(RHSA-2018:3760) Important: ghostscript security update
2018-12-03 21:13:23
(RHSA-2018:3761) Important: ghostscript security and bug fix update
2018-12-03 21:13:39
(RHSA-2018:2918) Important: ghostscript security update
2018-10-16 01:32:18
f5
f5
exploitdb
exploitdb
Ghostscript - Failed Restore Command Execution (Metasploit)
2018-09-10 00:00:00
oraclelinux
oraclelinux
ghostscript security and bug fix update
2018-12-03 00:00:00
ghostscript security update
2018-12-03 00:00:00
ghostscript security update
2018-10-15 00:00:00
debian
debian
[SECURITY] [DSA 4294-1] ghostscript security update
2018-09-16 20:48:10
[SECURITY] [DLA 1504-1] ghostscript security update
2018-09-13 12:23:11
[SECURITY] [DSA 4288-1] ghostscript security update
2018-09-07 21:23:16
freebsd
freebsd
Ghostscript -- arbitrary code execution
2018-08-21 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in Ghostscript affect PowerKVM
2018-12-17 14:30:02
Security Bulletin: Vulnerabilities in Ghostscript affect PowerKVM
2019-03-04 05:50:01
mageia
mageia
Updated ghostscript packages fix security vulnerabilities
2018-09-21 02:17:55
ubuntu
ubuntu
Ghostscript vulnerabilities
2018-09-19 00:00:00
suse
suse
Security update for ghostscript (important)
2018-10-05 21:13:14
Security update for ghostscript (important)
2018-10-05 21:10:24
fedora
fedora
[SECURITY] Fedora 27 Update: ghostscript-9.22-5.fc27
2018-09-07 15:25:45
[SECURITY] Fedora 29 Update: ghostscript-9.24-3.fc29
2018-09-21 05:46:15
[SECURITY] Fedora 28 Update: ghostscript-9.24-1.fc28
2018-09-11 17:04:00
gentoo
gentoo
GPL Ghostscript: Multiple vulnerabilities
2018-11-24 00:00:00