| Max CVSS | 9.3 | Min CVSS | 6.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-15911 | 6.8 |
In Artifex Ghostscript 9.23 before 2018-08-24, attackers able to supply crafted PostScript could use uninitialized memory access in the aesdecode operator to crash the interpreter or potentially execute code.
|
24-08-2020 - 17:37 | 28-08-2018 - 04:29 | |
| CVE-2018-15910 | 6.8 |
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the LockDistillerParams parameter to crash the interpreter or execute code.
|
05-11-2019 - 21:15 | 27-08-2018 - 17:29 | |
| CVE-2018-16509 | 9.3 |
An issue was discovered in Artifex Ghostscript before 9.24. Incorrect "restoration of privilege" checking during handling of /invalidaccess exceptions could be used by attackers able to supply crafted PostScript to execute code using the "pipe" instr
|
03-10-2019 - 00:03 | 05-09-2018 - 06:29 |