Products
Artifex Ghostscript
- before 10.03.1
Source
cve@mitre.org
Tags
CVE-2024-29510 details
Published : July 3, 2024, 7:15 p.m.
Last Modified : July 3, 2024, 7:15 p.m.
Last Modified : July 3, 2024, 7:15 p.m.
Description
Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device.
CVSS Score
| 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
|---|
Weakness
| Weakness | Name | Description |
|---|
References
| URL | Source |
|---|---|
| https://bugs.ghostscript.com/show_bug.cgi?id=707662 | cve@mitre.org |
| https://codeanlabs.com/blog/research/cve-2024-29510-ghostscript-format-string-exploitation/ | cve@mitre.org |
| https://www.openwall.com/lists/oss-security/2024/07/03/7 | cve@mitre.org |
This website uses the NVD API, but is not approved or certified by it.