| Max CVSS | 6.8 | Min CVSS | 6.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-15911 | 6.8 |
In Artifex Ghostscript 9.23 before 2018-08-24, attackers able to supply crafted PostScript could use uninitialized memory access in the aesdecode operator to crash the interpreter or potentially execute code.
|
24-08-2020 - 17:37 | 28-08-2018 - 04:29 | |
| CVE-2018-15910 | 6.8 |
In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the LockDistillerParams parameter to crash the interpreter or execute code.
|
05-11-2019 - 21:15 | 27-08-2018 - 17:29 | |
| CVE-2018-15909 | 6.8 |
In Artifex Ghostscript 9.23 before 2018-08-24, a type confusion using the .shfill operator could be used by attackers able to supply crafted PostScript files to crash the interpreter or potentially execute code.
|
16-10-2019 - 23:15 | 27-08-2018 - 17:29 | |
| CVE-2018-15908 | 6.8 |
In Artifex Ghostscript 9.23 before 2018-08-23, attackers are able to supply malicious PostScript files to bypass .tempfile restrictions and write files.
|
03-10-2019 - 00:03 | 27-08-2018 - 17:29 |