csaf_redhat - rhsa-2019

rhsa-2019_2534

Vulnerability from csaf_redhat

Published

2019-08-21 11:44

Modified

2024-11-15 04:08

Summary

Red Hat Security Advisory: Red Hat 3scale API Management 2.6.0 release and security update

Notes

Topic

A security update for Red Hat 3scale API Management Platform is now available from the Red Hat Container Catalog. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

Red Hat 3scale API Management delivers centralized API management features through a distributed, cloud-hosted layer. It includes built-in features to help in building a more successful API program, including access control, rate limits, payment gateway integration, and developer experience tools. This release of Red Hat 3scale API Management 2.6.0 replaces Red Hat 3scale API Management 2.5.1. Security Fix(es): * ghostscript: -dSAFER escape via .buildfont1 (CVE-2019-10216)

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "A security update for Red Hat 3scale API Management Platform is now available from the Red Hat Container Catalog.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat 3scale API Management delivers centralized API management features through a distributed, cloud-hosted layer. It includes built-in features to help in building a more successful API program, including access control, rate limits, payment gateway integration, and developer experience tools.\n\nThis release of Red Hat 3scale API Management 2.6.0 replaces Red Hat 3scale API Management 2.5.1.\n\nSecurity Fix(es):\n\n* ghostscript: -dSAFER escape via .buildfont1 (CVE-2019-10216)",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2019:2534",
        "url": "https://access.redhat.com/errata/RHSA-2019:2534"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "1737080",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1737080"
      },
      {
        "category": "external",
        "summary": "THREESCALE-2852",
        "url": "https://issues.redhat.com/browse/THREESCALE-2852"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_2534.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat 3scale API Management 2.6.0 release and security update",
    "tracking": {
      "current_release_date": "2024-11-15T04:08:50+00:00",
      "generator": {
        "date": "2024-11-15T04:08:50+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.1"
        }
      },
      "id": "RHSA-2019:2534",
      "initial_release_date": "2019-08-21T11:44:18+00:00",
      "revision_history": [
        {
          "date": "2019-08-21T11:44:18+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2019-08-21T11:44:18+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-11-15T04:08:50+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "RHAMP-2.6",
                "product": {
                  "name": "RHAMP-2.6",
                  "product_id": "7Server-RH7-3scale-AMP-2.6",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:3scale_amp:2"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "3scale API Management"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
                "product": {
                  "name": "3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
                  "product_id": "3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69?arch=amd64\u0026repository_url=registry.redhat.io/3scale-amp26/apicast-gateway\u0026tag=1.15-9"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
                "product": {
                  "name": "3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
                  "product_id": "3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e?arch=amd64\u0026repository_url=registry.redhat.io/3scale-amp26/backend\u0026tag=1.9-24"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64",
                "product": {
                  "name": "3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64",
                  "product_id": "3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43?arch=amd64\u0026repository_url=registry.redhat.io/3scale-amp26/zync\u0026tag=1.9-28"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
                "product": {
                  "name": "3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
                  "product_id": "3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926?arch=amd64\u0026repository_url=registry.redhat.io/3scale-amp26/3scale-operator\u0026tag=latest"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
                "product": {
                  "name": "3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
                  "product_id": "3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926?arch=amd64\u0026repository_url=registry.redhat.io/3scale-amp26/operator\u0026tag=latest"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
                "product": {
                  "name": "3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
                  "product_id": "3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed?arch=amd64\u0026repository_url=registry.redhat.io/3scale-amp26/toolbox\u0026tag=latest"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64 as a component of RHAMP-2.6",
          "product_id": "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64"
        },
        "product_reference": "3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
        "relates_to_product_reference": "7Server-RH7-3scale-AMP-2.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64 as a component of RHAMP-2.6",
          "product_id": "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64"
        },
        "product_reference": "3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
        "relates_to_product_reference": "7Server-RH7-3scale-AMP-2.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64 as a component of RHAMP-2.6",
          "product_id": "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64"
        },
        "product_reference": "3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
        "relates_to_product_reference": "7Server-RH7-3scale-AMP-2.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64 as a component of RHAMP-2.6",
          "product_id": "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64"
        },
        "product_reference": "3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
        "relates_to_product_reference": "7Server-RH7-3scale-AMP-2.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64 as a component of RHAMP-2.6",
          "product_id": "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64"
        },
        "product_reference": "3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
        "relates_to_product_reference": "7Server-RH7-3scale-AMP-2.6"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64 as a component of RHAMP-2.6",
          "product_id": "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
        },
        "product_reference": "3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64",
        "relates_to_product_reference": "7Server-RH7-3scale-AMP-2.6"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Artifex Software"
          ]
        },
        {
          "names": [
            "Netanel"
          ],
          "organization": "Cloudinary",
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2019-10216",
      "cwe": {
        "id": "CWE-648",
        "name": "Incorrect Use of Privileged APIs"
      },
      "discovery_date": "2019-08-02T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1737080"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "It was found that the .buildfont1 procedure did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges and access files outside of restricted areas.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "ghostscript: -dSAFER escape via .buildfont1 (701394)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-10216"
        },
        {
          "category": "external",
          "summary": "RHBZ#1737080",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1737080"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-10216",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-10216"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-10216",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-10216"
        }
      ],
      "release_date": "2019-08-12T13:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-08-21T11:44:18+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_3scale_api_management/2.6/html-single/installing_3scale/#onpremises-installation",
          "product_ids": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:2534"
        },
        {
          "category": "workaround",
          "details": "Please refer to the \"Mitigation\" section of CVE-2018-16509 : https://access.redhat.com/security/cve/cve-2018-16509",
          "product_ids": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "ghostscript: -dSAFER escape via .buildfont1 (701394)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Artifex Software"
          ]
        },
        {
          "names": [
            "Hiroki MATSUKUMA"
          ],
          "organization": "Cyber Defense Institute",
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2019-14811",
      "cwe": {
        "id": "CWE-648",
        "name": "Incorrect Use of Privileged APIs"
      },
      "discovery_date": "2019-08-19T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1743757"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the .pdf_hook_DSC_Creator procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "ghostscript: Safer mode bypass by .forceput exposure in .pdf_hook_DSC_Creator (701445)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-14811"
        },
        {
          "category": "external",
          "summary": "RHBZ#1743757",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743757"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-14811",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14811"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14811",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14811"
        }
      ],
      "release_date": "2019-08-28T12:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-08-21T11:44:18+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_3scale_api_management/2.6/html-single/installing_3scale/#onpremises-installation",
          "product_ids": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:2534"
        },
        {
          "category": "workaround",
          "details": "Please refer to the \"Mitigation\" section of CVE-2018-16509 : https://access.redhat.com/security/cve/cve-2018-16509",
          "product_ids": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "ghostscript: Safer mode bypass by .forceput exposure in .pdf_hook_DSC_Creator (701445)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Artifex Software"
          ]
        },
        {
          "names": [
            "Hiroki MATSUKUMA"
          ],
          "organization": "Cyber Defense Institute",
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2019-14812",
      "cwe": {
        "id": "CWE-648",
        "name": "Incorrect Use of Privileged APIs"
      },
      "discovery_date": "2019-08-19T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1743754"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the .setuserparams2 procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "ghostscript: Safer mode bypass by .forceput exposure in setuserparams (701444)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-14812"
        },
        {
          "category": "external",
          "summary": "RHBZ#1743754",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743754"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-14812",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14812"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14812",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14812"
        }
      ],
      "release_date": "2019-08-28T12:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-08-21T11:44:18+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_3scale_api_management/2.6/html-single/installing_3scale/#onpremises-installation",
          "product_ids": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:2534"
        },
        {
          "category": "workaround",
          "details": "Please refer to the \"Mitigation\" section of CVE-2018-16509 : https://access.redhat.com/security/cve/cve-2018-16509",
          "product_ids": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "ghostscript: Safer mode bypass by .forceput exposure in setuserparams (701444)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Artifex Software"
          ]
        },
        {
          "names": [
            "Hiroki MATSUKUMA"
          ],
          "organization": "Cyber Defense Institute",
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2019-14813",
      "cwe": {
        "id": "CWE-648",
        "name": "Incorrect Use of Privileged APIs"
      },
      "discovery_date": "2019-08-20T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1743737"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the setsystemparams procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "ghostscript: Safer mode bypass by .forceput exposure in setsystemparams (701443)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-14813"
        },
        {
          "category": "external",
          "summary": "RHBZ#1743737",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743737"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-14813",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14813"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14813",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14813"
        }
      ],
      "release_date": "2019-08-28T12:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-08-21T11:44:18+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_3scale_api_management/2.6/html-single/installing_3scale/#onpremises-installation",
          "product_ids": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:2534"
        },
        {
          "category": "workaround",
          "details": "Please refer to the \"Mitigation\" section of CVE-2018-16509 : https://access.redhat.com/security/cve/cve-2018-16509",
          "product_ids": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "ghostscript: Safer mode bypass by .forceput exposure in setsystemparams (701443)"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Artifex Software"
          ]
        }
      ],
      "cve": "CVE-2019-14817",
      "cwe": {
        "id": "CWE-648",
        "name": "Incorrect Use of Privileged APIs"
      },
      "discovery_date": "2019-08-21T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1744042"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the .pdfexectoken and other procedures where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "ghostscript: Safer mode bypass by .forceput exposure in .pdfexectoken and other procedures (701450)",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-14817"
        },
        {
          "category": "external",
          "summary": "RHBZ#1744042",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1744042"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-14817",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14817"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14817",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14817"
        }
      ],
      "release_date": "2019-08-28T12:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-08-21T11:44:18+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_3scale_api_management/2.6/html-single/installing_3scale/#onpremises-installation",
          "product_ids": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:2534"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "ghostscript: Safer mode bypass by .forceput exposure in .pdfexectoken and other procedures (701450)"
    },
    {
      "cve": "CVE-2019-14849",
      "cwe": {
        "id": "CWE-201",
        "name": "Insertion of Sensitive Information Into Sent Data"
      },
      "discovery_date": "2019-05-20T00:00:00+00:00",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1712167"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found where 3scale did not set the HTTPOnly attribute on the user session cookie. An attacker could abuse this flaw to conduct Cross-site Scripting attacks and gain access to unauthorized information.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "3scale: user session cookie does not set HTTPOnly",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
          "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2019-14849"
        },
        {
          "category": "external",
          "summary": "RHBZ#1712167",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1712167"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2019-14849",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14849"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-14849",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-14849"
        }
      ],
      "release_date": "2019-12-11T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2019-08-21T11:44:18+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/documentation/en-us/red_hat_3scale_api_management/2.6/html-single/installing_3scale/#onpremises-installation",
          "product_ids": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2019:2534"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
            "version": "3.0"
          },
          "products": [
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/3scale-operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/apicast-gateway@sha256:460179d4b253aa5ec8230e1822b9a1d391f572b69b8339c8610598fe9e4b6e69_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/backend@sha256:fc6b954148555d14c3e69152d30eb3db525d12443a64c6301e30717c33f7bf7e_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/operator@sha256:a15858e65d1ce9d9135dc6efc6bbd991c139da60fa27f5c6d913f6a14a2da926_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/toolbox@sha256:af0fe71f79abd21a7cb7a10c7a3797253a2b59025805709db5077f7608be6aed_amd64",
            "7Server-RH7-3scale-AMP-2.6:3scale-amp26/zync@sha256:93028a84361f47d61dc8d487547f1023817f3c8a95d8f0d287c1774e18954f43_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "3scale: user session cookie does not set HTTPOnly"
    }
  ]
}

cve-2019-14811

Vulnerability from cvelistv5

Published

2019-09-03 15:17

Modified

2024-08-05 00:26

Severity ?

7.3 (High) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Summary

A flaw was found in, ghostscript versions prior to 9.50, in the .pdf_hook_DSC_Creator procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands.

References

▼	URL	Tags
	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14811	x_refsource_CONFIRM
	https://www.debian.org/security/2019/dsa-4518	vendor-advisory, x_refsource_DEBIAN
	https://lists.debian.org/debian-lts-announce/2019/09/msg00007.html	mailing-list, x_refsource_MLIST
	https://seclists.org/bugtraq/2019/Sep/15	mailing-list, x_refsource_BUGTRAQ
	https://access.redhat.com/errata/RHSA-2019:2594	vendor-advisory, x_refsource_REDHAT
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/	vendor-advisory, x_refsource_FEDORA
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZP34D27RKYV2POJ3NJLSVCHUA5V5C45A/	vendor-advisory, x_refsource_FEDORA
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/	vendor-advisory, x_refsource_FEDORA
	http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html	vendor-advisory, x_refsource_SUSE
	https://access.redhat.com/errata/RHBA-2019:2824	vendor-advisory, x_refsource_REDHAT
	https://security.gentoo.org/glsa/202004-03	vendor-advisory, x_refsource_GENTOO

Impacted products

Vendor

Product

Version

▼

Artifex Software

ghostscript

Version: ghostscript versions prior to 9.28

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T00:26:38.930Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14811"
          },
          {
            "name": "DSA-4518",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2019/dsa-4518"
          },
          {
            "name": "[debian-lts-announce] 20190909 [SECURITY] [DLA 1915-1] ghostscript security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00007.html"
          },
          {
            "name": "20190910 [SECURITY] [DSA 4518-1] ghostscript security update",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2019/Sep/15"
          },
          {
            "name": "RHSA-2019:2594",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2594"
          },
          {
            "name": "FEDORA-2019-0a9d525d71",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/"
          },
          {
            "name": "FEDORA-2019-953fc0f16d",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZP34D27RKYV2POJ3NJLSVCHUA5V5C45A/"
          },
          {
            "name": "FEDORA-2019-ebd6c4f15a",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/"
          },
          {
            "name": "openSUSE-SU-2019:2222",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html"
          },
          {
            "name": "openSUSE-SU-2019:2223",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html"
          },
          {
            "name": "RHBA-2019:2824",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHBA-2019:2824"
          },
          {
            "name": "GLSA-202004-03",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202004-03"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ghostscript",
          "vendor": "Artifex Software",
          "versions": [
            {
              "status": "affected",
              "version": "ghostscript versions prior to 9.28"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in, ghostscript versions prior to 9.50, in the .pdf_hook_DSC_Creator procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-648",
              "description": "CWE-648",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-04-01T21:06:10",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14811"
        },
        {
          "name": "DSA-4518",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2019/dsa-4518"
        },
        {
          "name": "[debian-lts-announce] 20190909 [SECURITY] [DLA 1915-1] ghostscript security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00007.html"
        },
        {
          "name": "20190910 [SECURITY] [DSA 4518-1] ghostscript security update",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2019/Sep/15"
        },
        {
          "name": "RHSA-2019:2594",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2594"
        },
        {
          "name": "FEDORA-2019-0a9d525d71",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/"
        },
        {
          "name": "FEDORA-2019-953fc0f16d",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZP34D27RKYV2POJ3NJLSVCHUA5V5C45A/"
        },
        {
          "name": "FEDORA-2019-ebd6c4f15a",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/"
        },
        {
          "name": "openSUSE-SU-2019:2222",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html"
        },
        {
          "name": "openSUSE-SU-2019:2223",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html"
        },
        {
          "name": "RHBA-2019:2824",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHBA-2019:2824"
        },
        {
          "name": "GLSA-202004-03",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202004-03"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2019-14811",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ghostscript",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "ghostscript versions prior to 9.28"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Artifex Software"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A flaw was found in, ghostscript versions prior to 9.50, in the .pdf_hook_DSC_Creator procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands."
            }
          ]
        },
        "impact": {
          "cvss": [
            [
              {
                "vectorString": "7.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.0"
              }
            ]
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-648"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14811",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14811"
            },
            {
              "name": "DSA-4518",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2019/dsa-4518"
            },
            {
              "name": "[debian-lts-announce] 20190909 [SECURITY] [DLA 1915-1] ghostscript security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00007.html"
            },
            {
              "name": "20190910 [SECURITY] [DSA 4518-1] ghostscript security update",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2019/Sep/15"
            },
            {
              "name": "RHSA-2019:2594",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:2594"
            },
            {
              "name": "FEDORA-2019-0a9d525d71",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/"
            },
            {
              "name": "FEDORA-2019-953fc0f16d",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZP34D27RKYV2POJ3NJLSVCHUA5V5C45A/"
            },
            {
              "name": "FEDORA-2019-ebd6c4f15a",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/"
            },
            {
              "name": "openSUSE-SU-2019:2222",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html"
            },
            {
              "name": "openSUSE-SU-2019:2223",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html"
            },
            {
              "name": "RHBA-2019:2824",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHBA-2019:2824"
            },
            {
              "name": "GLSA-202004-03",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202004-03"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2019-14811",
    "datePublished": "2019-09-03T15:17:12",
    "dateReserved": "2019-08-10T00:00:00",
    "dateUpdated": "2024-08-05T00:26:38.930Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2019-14817

Vulnerability from cvelistv5

Published

2019-09-03 15:50

Modified

2024-08-05 00:26

Severity ?

7.3 (High) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Summary

A flaw was found in, ghostscript versions prior to 9.50, in the .pdfexectoken and other procedures where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands.

References

▼	URL	Tags
	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14817	x_refsource_CONFIRM
	http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=cd1b1cacadac2479e291efe611979bdc1b3bdb19	x_refsource_CONFIRM
	https://www.debian.org/security/2019/dsa-4518	vendor-advisory, x_refsource_DEBIAN
	https://lists.debian.org/debian-lts-announce/2019/09/msg00007.html	mailing-list, x_refsource_MLIST
	https://seclists.org/bugtraq/2019/Sep/15	mailing-list, x_refsource_BUGTRAQ
	https://access.redhat.com/errata/RHSA-2019:2594	vendor-advisory, x_refsource_REDHAT
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/	vendor-advisory, x_refsource_FEDORA
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZP34D27RKYV2POJ3NJLSVCHUA5V5C45A/	vendor-advisory, x_refsource_FEDORA
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/	vendor-advisory, x_refsource_FEDORA
	http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html	vendor-advisory, x_refsource_SUSE
	https://access.redhat.com/errata/RHBA-2019:2824	vendor-advisory, x_refsource_REDHAT
	https://security.gentoo.org/glsa/202004-03	vendor-advisory, x_refsource_GENTOO

Impacted products

Vendor

Product

Version

▼

Artifex Software

ghostscript

Version: ghostscript versions prior to 9.28

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T00:26:39.156Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14817"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=cd1b1cacadac2479e291efe611979bdc1b3bdb19"
          },
          {
            "name": "DSA-4518",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2019/dsa-4518"
          },
          {
            "name": "[debian-lts-announce] 20190909 [SECURITY] [DLA 1915-1] ghostscript security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00007.html"
          },
          {
            "name": "20190910 [SECURITY] [DSA 4518-1] ghostscript security update",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2019/Sep/15"
          },
          {
            "name": "RHSA-2019:2594",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2594"
          },
          {
            "name": "FEDORA-2019-0a9d525d71",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/"
          },
          {
            "name": "FEDORA-2019-953fc0f16d",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZP34D27RKYV2POJ3NJLSVCHUA5V5C45A/"
          },
          {
            "name": "FEDORA-2019-ebd6c4f15a",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/"
          },
          {
            "name": "openSUSE-SU-2019:2222",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html"
          },
          {
            "name": "openSUSE-SU-2019:2223",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html"
          },
          {
            "name": "RHBA-2019:2824",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHBA-2019:2824"
          },
          {
            "name": "GLSA-202004-03",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202004-03"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ghostscript",
          "vendor": "Artifex Software",
          "versions": [
            {
              "status": "affected",
              "version": "ghostscript versions prior to 9.28"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in, ghostscript versions prior to 9.50, in the .pdfexectoken and other procedures where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-648",
              "description": "CWE-648",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-04-01T21:06:06",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14817"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=cd1b1cacadac2479e291efe611979bdc1b3bdb19"
        },
        {
          "name": "DSA-4518",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2019/dsa-4518"
        },
        {
          "name": "[debian-lts-announce] 20190909 [SECURITY] [DLA 1915-1] ghostscript security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00007.html"
        },
        {
          "name": "20190910 [SECURITY] [DSA 4518-1] ghostscript security update",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2019/Sep/15"
        },
        {
          "name": "RHSA-2019:2594",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2594"
        },
        {
          "name": "FEDORA-2019-0a9d525d71",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/"
        },
        {
          "name": "FEDORA-2019-953fc0f16d",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZP34D27RKYV2POJ3NJLSVCHUA5V5C45A/"
        },
        {
          "name": "FEDORA-2019-ebd6c4f15a",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/"
        },
        {
          "name": "openSUSE-SU-2019:2222",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html"
        },
        {
          "name": "openSUSE-SU-2019:2223",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html"
        },
        {
          "name": "RHBA-2019:2824",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHBA-2019:2824"
        },
        {
          "name": "GLSA-202004-03",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202004-03"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2019-14817",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ghostscript",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "ghostscript versions prior to 9.28"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Artifex Software"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A flaw was found in, ghostscript versions prior to 9.50, in the .pdfexectoken and other procedures where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands."
            }
          ]
        },
        "impact": {
          "cvss": [
            [
              {
                "vectorString": "7.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.0"
              }
            ]
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-648"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14817",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14817"
            },
            {
              "name": "http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=cd1b1cacadac2479e291efe611979bdc1b3bdb19",
              "refsource": "CONFIRM",
              "url": "http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=cd1b1cacadac2479e291efe611979bdc1b3bdb19"
            },
            {
              "name": "DSA-4518",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2019/dsa-4518"
            },
            {
              "name": "[debian-lts-announce] 20190909 [SECURITY] [DLA 1915-1] ghostscript security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00007.html"
            },
            {
              "name": "20190910 [SECURITY] [DSA 4518-1] ghostscript security update",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2019/Sep/15"
            },
            {
              "name": "RHSA-2019:2594",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:2594"
            },
            {
              "name": "FEDORA-2019-0a9d525d71",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/"
            },
            {
              "name": "FEDORA-2019-953fc0f16d",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZP34D27RKYV2POJ3NJLSVCHUA5V5C45A/"
            },
            {
              "name": "FEDORA-2019-ebd6c4f15a",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/"
            },
            {
              "name": "openSUSE-SU-2019:2222",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html"
            },
            {
              "name": "openSUSE-SU-2019:2223",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html"
            },
            {
              "name": "RHBA-2019:2824",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHBA-2019:2824"
            },
            {
              "name": "GLSA-202004-03",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202004-03"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2019-14817",
    "datePublished": "2019-09-03T15:50:42",
    "dateReserved": "2019-08-10T00:00:00",
    "dateUpdated": "2024-08-05T00:26:39.156Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2019-14813

Vulnerability from cvelistv5

Published

2019-09-06 13:27

Modified

2024-08-05 00:26

Severity ?

7.3 (High) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Summary

A flaw was found in ghostscript, versions 9.x before 9.50, in the setsystemparams procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands.

References

▼	URL	Tags
	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14813	x_refsource_CONFIRM
	http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=885444fcbe10dc42787ecb76686c8ee4dd33bf33	x_refsource_CONFIRM
	https://www.debian.org/security/2019/dsa-4518	vendor-advisory, x_refsource_DEBIAN
	https://lists.debian.org/debian-lts-announce/2019/09/msg00007.html	mailing-list, x_refsource_MLIST
	https://seclists.org/bugtraq/2019/Sep/15	mailing-list, x_refsource_BUGTRAQ
	https://access.redhat.com/errata/RHSA-2019:2594	vendor-advisory, x_refsource_REDHAT
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/	vendor-advisory, x_refsource_FEDORA
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZP34D27RKYV2POJ3NJLSVCHUA5V5C45A/	vendor-advisory, x_refsource_FEDORA
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/	vendor-advisory, x_refsource_FEDORA
	http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html	vendor-advisory, x_refsource_SUSE
	https://access.redhat.com/errata/RHBA-2019:2824	vendor-advisory, x_refsource_REDHAT
	https://security.gentoo.org/glsa/202004-03	vendor-advisory, x_refsource_GENTOO

Impacted products

Vendor

Product

Version

▼

Artifex Software

ghostscript

Version: ghostscript versions 9.x before 9.28

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T00:26:39.065Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14813"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=885444fcbe10dc42787ecb76686c8ee4dd33bf33"
          },
          {
            "name": "DSA-4518",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "https://www.debian.org/security/2019/dsa-4518"
          },
          {
            "name": "[debian-lts-announce] 20190909 [SECURITY] [DLA 1915-1] ghostscript security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00007.html"
          },
          {
            "name": "20190910 [SECURITY] [DSA 4518-1] ghostscript security update",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "https://seclists.org/bugtraq/2019/Sep/15"
          },
          {
            "name": "RHSA-2019:2594",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2019:2594"
          },
          {
            "name": "FEDORA-2019-0a9d525d71",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/"
          },
          {
            "name": "FEDORA-2019-953fc0f16d",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZP34D27RKYV2POJ3NJLSVCHUA5V5C45A/"
          },
          {
            "name": "FEDORA-2019-ebd6c4f15a",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/"
          },
          {
            "name": "openSUSE-SU-2019:2222",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html"
          },
          {
            "name": "openSUSE-SU-2019:2223",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html"
          },
          {
            "name": "RHBA-2019:2824",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHBA-2019:2824"
          },
          {
            "name": "GLSA-202004-03",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202004-03"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ghostscript",
          "vendor": "Artifex Software",
          "versions": [
            {
              "status": "affected",
              "version": "ghostscript versions 9.x before 9.28"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in ghostscript, versions 9.x before 9.50, in the setsystemparams procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-648",
              "description": "CWE-648",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-04-01T21:06:08",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14813"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=885444fcbe10dc42787ecb76686c8ee4dd33bf33"
        },
        {
          "name": "DSA-4518",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "https://www.debian.org/security/2019/dsa-4518"
        },
        {
          "name": "[debian-lts-announce] 20190909 [SECURITY] [DLA 1915-1] ghostscript security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00007.html"
        },
        {
          "name": "20190910 [SECURITY] [DSA 4518-1] ghostscript security update",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "https://seclists.org/bugtraq/2019/Sep/15"
        },
        {
          "name": "RHSA-2019:2594",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2019:2594"
        },
        {
          "name": "FEDORA-2019-0a9d525d71",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/"
        },
        {
          "name": "FEDORA-2019-953fc0f16d",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZP34D27RKYV2POJ3NJLSVCHUA5V5C45A/"
        },
        {
          "name": "FEDORA-2019-ebd6c4f15a",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/"
        },
        {
          "name": "openSUSE-SU-2019:2222",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html"
        },
        {
          "name": "openSUSE-SU-2019:2223",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html"
        },
        {
          "name": "RHBA-2019:2824",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHBA-2019:2824"
        },
        {
          "name": "GLSA-202004-03",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202004-03"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2019-14813",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ghostscript",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "ghostscript versions 9.x before 9.28"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Artifex Software"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A flaw was found in ghostscript, versions 9.x before 9.50, in the setsystemparams procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands."
            }
          ]
        },
        "impact": {
          "cvss": [
            [
              {
                "vectorString": "7.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.0"
              }
            ]
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-648"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14813",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14813"
            },
            {
              "name": "http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=885444fcbe10dc42787ecb76686c8ee4dd33bf33",
              "refsource": "CONFIRM",
              "url": "http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=885444fcbe10dc42787ecb76686c8ee4dd33bf33"
            },
            {
              "name": "DSA-4518",
              "refsource": "DEBIAN",
              "url": "https://www.debian.org/security/2019/dsa-4518"
            },
            {
              "name": "[debian-lts-announce] 20190909 [SECURITY] [DLA 1915-1] ghostscript security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2019/09/msg00007.html"
            },
            {
              "name": "20190910 [SECURITY] [DSA 4518-1] ghostscript security update",
              "refsource": "BUGTRAQ",
              "url": "https://seclists.org/bugtraq/2019/Sep/15"
            },
            {
              "name": "RHSA-2019:2594",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHSA-2019:2594"
            },
            {
              "name": "FEDORA-2019-0a9d525d71",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/"
            },
            {
              "name": "FEDORA-2019-953fc0f16d",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZP34D27RKYV2POJ3NJLSVCHUA5V5C45A/"
            },
            {
              "name": "FEDORA-2019-ebd6c4f15a",
              "refsource": "FEDORA",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/"
            },
            {
              "name": "openSUSE-SU-2019:2222",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00090.html"
            },
            {
              "name": "openSUSE-SU-2019:2223",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00088.html"
            },
            {
              "name": "RHBA-2019:2824",
              "refsource": "REDHAT",
              "url": "https://access.redhat.com/errata/RHBA-2019:2824"
            },
            {
              "name": "GLSA-202004-03",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202004-03"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2019-14813",
    "datePublished": "2019-09-06T13:27:47",
    "dateReserved": "2019-08-10T00:00:00",
    "dateUpdated": "2024-08-05T00:26:39.065Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2019-14812

Vulnerability from cvelistv5

Published

2019-11-27 13:50

Modified

2024-08-05 00:26

Severity ?

7.3 (High) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Summary

A flaw was found in all ghostscript versions 9.x before 9.50, in the .setuserparams2 procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands.

References

▼	URL	Tags
	http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=885444fcbe10dc42787ecb76686c8ee4dd33bf33	x_refsource_CONFIRM
	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14812	x_refsource_CONFIRM
	https://access.redhat.com/security/cve/cve-2019-14812	x_refsource_CONFIRM
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/	x_refsource_CONFIRM
	https://bugs.ghostscript.com/show_bug.cgi?id=701444	x_refsource_CONFIRM
	https://security.gentoo.org/glsa/202004-03	vendor-advisory, x_refsource_GENTOO

Impacted products

Vendor

Product

Version

▼

Red Hat

ghostscript

Version: all ghostscript versions 9.x before 9.50

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T00:26:39.040Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=885444fcbe10dc42787ecb76686c8ee4dd33bf33"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14812"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/cve-2019-14812"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugs.ghostscript.com/show_bug.cgi?id=701444"
          },
          {
            "name": "GLSA-202004-03",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202004-03"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ghostscript",
          "vendor": "Red Hat",
          "versions": [
            {
              "status": "affected",
              "version": "all ghostscript versions 9.x before 9.50"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in all ghostscript versions 9.x before 9.50, in the .setuserparams2 procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-648",
              "description": "CWE-648",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-04-01T21:06:09",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=885444fcbe10dc42787ecb76686c8ee4dd33bf33"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14812"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://access.redhat.com/security/cve/cve-2019-14812"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugs.ghostscript.com/show_bug.cgi?id=701444"
        },
        {
          "name": "GLSA-202004-03",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202004-03"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2019-14812",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ghostscript",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "all ghostscript versions 9.x before 9.50"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Red Hat"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A flaw was found in all ghostscript versions 9.x before 9.50, in the .setuserparams2 procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands."
            }
          ]
        },
        "impact": {
          "cvss": [
            [
              {
                "vectorString": "7.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.0"
              }
            ]
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-648"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=885444fcbe10dc42787ecb76686c8ee4dd33bf33",
              "refsource": "CONFIRM",
              "url": "http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=885444fcbe10dc42787ecb76686c8ee4dd33bf33"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14812",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14812"
            },
            {
              "name": "https://access.redhat.com/security/cve/cve-2019-14812",
              "refsource": "CONFIRM",
              "url": "https://access.redhat.com/security/cve/cve-2019-14812"
            },
            {
              "name": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/",
              "refsource": "CONFIRM",
              "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LBUC4DBBJTRFNCR3IODBV4IXB2C2HI3V/"
            },
            {
              "name": "https://bugs.ghostscript.com/show_bug.cgi?id=701444",
              "refsource": "CONFIRM",
              "url": "https://bugs.ghostscript.com/show_bug.cgi?id=701444"
            },
            {
              "name": "GLSA-202004-03",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202004-03"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2019-14812",
    "datePublished": "2019-11-27T13:50:15",
    "dateReserved": "2019-08-10T00:00:00",
    "dateUpdated": "2024-08-05T00:26:39.040Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2019-14849

Vulnerability from cvelistv5

Published

2019-12-12 13:14

Modified

2024-08-05 00:26

Severity ?

4.6 (Medium) - CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

Summary

A vulnerability was found in 3scale before version 2.6, did not set the HTTPOnly attribute on the user session cookie. An attacker could use this to conduct cross site scripting attacks and gain access to unauthorized information.

References

▼	URL	Tags
	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14849	x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

▼

n/a

3scale

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T00:26:39.075Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14849"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "3scale",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability was found in 3scale before version 2.6, did not set the HTTPOnly attribute on the user session cookie. An attacker could use this to conduct cross site scripting attacks and gain access to unauthorized information."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-201",
              "description": "CWE-201",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2019-12-12T13:14:53",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14849"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2019-14849",
    "datePublished": "2019-12-12T13:14:53",
    "dateReserved": "2019-08-10T00:00:00",
    "dateUpdated": "2024-08-05T00:26:39.075Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2019-10216

Vulnerability from cvelistv5

Published

2019-11-27 12:10

Modified

2024-08-04 22:17

Severity ?

7.3 (High) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Summary

In ghostscript before version 9.50, the .buildfont1 procedure did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges and access files outside of restricted areas.

References

▼	URL	Tags
	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10216	x_refsource_CONFIRM
	http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=5b85ddd19	x_refsource_CONFIRM
	https://security.gentoo.org/glsa/202004-03	vendor-advisory, x_refsource_GENTOO

Impacted products

Vendor

Product

Version

▼

ghostscript

Version: before 9.50

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T22:17:18.936Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10216"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=5b85ddd19"
          },
          {
            "name": "GLSA-202004-03",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202004-03"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ghostscript",
          "vendor": "ghostscript",
          "versions": [
            {
              "status": "affected",
              "version": "before 9.50"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "In ghostscript before version 9.50, the .buildfont1 procedure did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges and access files outside of restricted areas."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-648",
              "description": "CWE-648",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-04-01T21:06:05",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10216"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=5b85ddd19"
        },
        {
          "name": "GLSA-202004-03",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202004-03"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2019-10216",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ghostscript",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "before 9.50"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "ghostscript"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "In ghostscript before version 9.50, the .buildfont1 procedure did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges and access files outside of restricted areas."
            }
          ]
        },
        "impact": {
          "cvss": [
            [
              {
                "vectorString": "7.3/CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.0"
              }
            ]
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-648"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10216",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-10216"
            },
            {
              "name": "http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=5b85ddd19",
              "refsource": "CONFIRM",
              "url": "http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=5b85ddd19"
            },
            {
              "name": "GLSA-202004-03",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202004-03"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2019-10216",
    "datePublished": "2019-11-27T12:10:12",
    "dateReserved": "2019-03-27T00:00:00",
    "dateUpdated": "2024-08-04T22:17:18.936Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

rhsa-2019_2534

Vulnerability from csaf_redhat

cve-2019-14811

Vulnerability from cvelistv5

cve-2019-14817

Vulnerability from cvelistv5

cve-2019-14813

Vulnerability from cvelistv5

cve-2019-14812

Vulnerability from cvelistv5

cve-2019-14849

Vulnerability from cvelistv5

cve-2019-10216

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature