| Max CVSS | 6.8 | Min CVSS | 6.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-15911 | 6.8 |
In Artifex Ghostscript 9.23 before 2018-08-24, attackers able to supply crafted PostScript could use uninitialized memory access in the aesdecode operator to crash the interpreter or potentially execute code.
|
24-08-2020 - 17:37 | 28-08-2018 - 04:29 | |
| CVE-2018-18284 | 6.8 |
Artifex Ghostscript 9.25 and earlier allows attackers to bypass a sandbox protection mechanism via vectors involving the 1Policy operator.
|
05-11-2019 - 21:15 | 19-10-2018 - 22:29 | |
| CVE-2018-16513 | 6.8 |
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the setcolor function to crash the interpreter or possibly have unspecified other impact.
|
05-11-2019 - 21:15 | 05-09-2018 - 13:29 | |
| CVE-2018-15910 | 6.8 |
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the LockDistillerParams parameter to crash the interpreter or execute code.
|
05-11-2019 - 21:15 | 27-08-2018 - 17:29 |