GitHub

churamanib/CVE-2023-36664-Ghostscript-command-injection

Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices (with the %pipe% prefix or the | pipe character prefix). Debian released a security advisory mentioning possible ...
GitHub

Ghostscript command injection vulnerability PoC (CVE-2023-36664)

Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices (with the %pipe% prefix or the | pipe character prefix). Debian released a security advisory mentioning possible ...
SecurityWeek

Data Leak in Ghostscript Could Allow Command Execution

Data leak vulnerabilities in Ghostscript could allow an attacker to take over a routine and even execute commands on systems, Google Project Zero researcher Tavis Ormandy has discovered. A suite of ...
Security Boulevard

Ghostscript Vulnerability Actively Exploited in Attacks

A significant remote code execution (RCE) vulnerability was identified in the Ghostscript library, a widely used tool on Linux systems. This vulnerability, tracked as CVE-2024-29510, is currently ...
Threat Post

Ghostscript Flaws Allow Remote Takeover of Systems

Researchers have uncovered vulnerabilities in the widely deployed Ghostscript package that allows bad actors to remotely take control of vulnerable systems. As of August 24, 2018, all reported ...
Security Boulevard

Ghostscript Vulnerabilities Patched in Recent Ubuntu Updates

Canonical has released Ubuntu security updates to address several Ghostscript vulnerabilities identified by security researchers. These vulnerabilities could potentially allow attackers to bypass ...