Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-pvfx-6ymq-6qbf
Vulnerability ID VCID-pvfx-6ymq-6qbf
Aliases CVE-2025-59799
Summary Artifex Ghostscript: From CVEorg collector
Status Published
Exploitability 0.5
Weighted Severity 3.6
Risk 1.8
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-121 Stack-based Buffer Overflow
System Score Found at
cvssv3 4.0 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59799.json
epss 0.00016 https://api.first.org/data/v1/epss?cve=CVE-2025-59799
epss 0.00016 https://api.first.org/data/v1/epss?cve=CVE-2025-59799
epss 0.00016 https://api.first.org/data/v1/epss?cve=CVE-2025-59799
epss 0.00016 https://api.first.org/data/v1/epss?cve=CVE-2025-59799
epss 0.00016 https://api.first.org/data/v1/epss?cve=CVE-2025-59799
epss 0.00016 https://api.first.org/data/v1/epss?cve=CVE-2025-59799
epss 0.00016 https://api.first.org/data/v1/epss?cve=CVE-2025-59799
epss 0.00016 https://api.first.org/data/v1/epss?cve=CVE-2025-59799
epss 0.00016 https://api.first.org/data/v1/epss?cve=CVE-2025-59799
cvssv3.1 4.3 https://bugs.ghostscript.com/show_bug.cgi?id=708517
ssvc Track https://bugs.ghostscript.com/show_bug.cgi?id=708517
cvssv3.1 4.3 https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=6dab38fb211f15226c242ab7a83fa53e4b0ff781
ssvc Track https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=6dab38fb211f15226c242ab7a83fa53e4b0ff781
cvssv3.1 4.3 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59799.json
https://api.first.org/data/v1/epss?cve=CVE-2025-59799
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59799
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
1116443 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1116443
2397227 https://bugzilla.redhat.com/show_bug.cgi?id=2397227
?id=6dab38fb211f15226c242ab7a83fa53e4b0ff781 https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=6dab38fb211f15226c242ab7a83fa53e4b0ff781
show_bug.cgi?id=708517 https://bugs.ghostscript.com/show_bug.cgi?id=708517
USN-7782-1 https://usn.ubuntu.com/7782-1/
USN-7904-1 https://usn.ubuntu.com/7904-1/
No exploits are available.
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59799.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N Found at https://bugs.ghostscript.com/show_bug.cgi?id=708517
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-23T13:48:50Z/ Found at https://bugs.ghostscript.com/show_bug.cgi?id=708517
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N Found at https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=6dab38fb211f15226c242ab7a83fa53e4b0ff781
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-23T13:48:50Z/ Found at https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=6dab38fb211f15226c242ab7a83fa53e4b0ff781
Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.03607
EPSS Score 0.00016
Published At April 2, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:36:30.616106+00:00 RedHat Importer Import https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59799.json 38.0.0