Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-g57e-a8z2-k3dx
Vulnerability ID VCID-g57e-a8z2-k3dx
Aliases CVE-2018-15911
Summary Multiple vulnerabilities have been found in GPL Ghostscript, the worst of which could result in the execution of arbitrary code.
Status Published
Exploitability 0.5
Weighted Severity 6.6
Risk 3.3
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-456 Missing Initialization of a Variable
System Score Found at
cvssv3 7.3 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15911.json
epss 0.02697 https://api.first.org/data/v1/epss?cve=CVE-2018-15911
epss 0.02697 https://api.first.org/data/v1/epss?cve=CVE-2018-15911
epss 0.02697 https://api.first.org/data/v1/epss?cve=CVE-2018-15911
epss 0.02697 https://api.first.org/data/v1/epss?cve=CVE-2018-15911
epss 0.02697 https://api.first.org/data/v1/epss?cve=CVE-2018-15911
epss 0.02697 https://api.first.org/data/v1/epss?cve=CVE-2018-15911
epss 0.02697 https://api.first.org/data/v1/epss?cve=CVE-2018-15911
epss 0.02697 https://api.first.org/data/v1/epss?cve=CVE-2018-15911
epss 0.02697 https://api.first.org/data/v1/epss?cve=CVE-2018-15911
cvssv3 7.3 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15911.json
https://api.first.org/data/v1/epss?cve=CVE-2018-15911
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
1625832 https://bugzilla.redhat.com/show_bug.cgi?id=1625832
907332 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332
GLSA-201811-12 https://security.gentoo.org/glsa/201811-12
RHSA-2018:3834 https://access.redhat.com/errata/RHSA-2018:3834
USN-3768-1 https://usn.ubuntu.com/3768-1/
No exploits are available.
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15911.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.85805
EPSS Score 0.02697
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:05:01.024449+00:00 Gentoo Importer Import https://security.gentoo.org/glsa/201811-12 38.0.0