Package Instance

reference_id

AVG-786

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16294.json

reference_url	https://bugs.chromium.org/p/project-zero/issues/detail?id=1682&desc=2
reference_id	CVE-2018-17961
reference_type	exploit
scores
url	https://bugs.chromium.org/p/project-zero/issues/detail?id=1682&desc=2

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/45573.txt
reference_id	CVE-2018-17961
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/45573.txt

reference_url	https://access.redhat.com/errata/RHSA-2018:3834
reference_id	RHSA-2018:3834
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3834

reference_url	https://usn.ubuntu.com/3803-1/
reference_id	USN-3803-1
reference_type
scores
url	https://usn.ubuntu.com/3803-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.25~dfsg-3?distro=trixie
purl	pkg:deb/debian/ghostscript@9.25~dfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.25~dfsg-3%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-17961

risk_score 10.0

exploitability 2.0

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-69wu-x6x3-u3ft

url VCID-6b2w-us16-bba8

vulnerability_id VCID-6b2w-us16-bba8

summary A buffer overflow vulnerability in epsc_print_page() in devices/gdevepsc.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16294.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16294

reference_id

reference_type

scores

value	0.00548
scoring_system	epss
scoring_elements	0.68258
published_at	2026-06-04T12:55:00Z

value	0.00548
scoring_system	epss
scoring_elements	0.683
published_at	2026-06-09T12:55:00Z

value	0.00548
scoring_system	epss
scoring_elements	0.68284
published_at	2026-06-08T12:55:00Z

value	0.00548
scoring_system	epss
scoring_elements	0.68307
published_at	2026-06-06T12:55:00Z

value	0.00548
scoring_system	epss
scoring_elements	0.68299
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870229
reference_id	1870229
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870229

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16294

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6b2w-us16-bba8

url VCID-6mvj-2dwd-w3cm

vulnerability_id VCID-6mvj-2dwd-w3cm

summary The jpc_qcx_getcompparms function in jpc/jpc_cs.c for the JasPer JPEG-2000 library (libjasper) before 1.900 allows remote user-assisted attackers to cause a denial of service (crash) and possibly corrupt the heap via malformed image files, as originally demonstrated using imagemagick convert.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2721.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-2721.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-2721

reference_id

reference_type

scores

value	0.10147
scoring_system	epss
scoring_elements	0.93241
published_at	2026-06-04T12:55:00Z

value	0.10147
scoring_system	epss
scoring_elements	0.93252
published_at	2026-06-06T12:55:00Z

value	0.12089
scoring_system	epss
scoring_elements	0.93937
published_at	2026-06-07T12:55:00Z

value	0.12089
scoring_system	epss
scoring_elements	0.93934
published_at	2026-06-08T12:55:00Z

value	0.14345
scoring_system	epss
scoring_elements	0.94554
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-2721

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2721
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2721

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=346501
reference_id	346501
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=346501

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=447188
reference_id	447188
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=447188

reference_url	https://access.redhat.com/errata/RHSA-2009:0012
reference_id	RHSA-2009:0012
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:0012

reference_url	https://usn.ubuntu.com/501-1/
reference_id	USN-501-1
reference_type
scores
url	https://usn.ubuntu.com/501-1/

reference_url	https://usn.ubuntu.com/501-2/
reference_id	USN-501-2
reference_type
scores
url	https://usn.ubuntu.com/501-2/

fixed_packages

url	pkg:deb/debian/ghostscript@8.61.dfsg.1~svn8187-1.1?distro=trixie
purl	pkg:deb/debian/ghostscript@8.61.dfsg.1~svn8187-1.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.61.dfsg.1~svn8187-1.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2007-2721

risk_score 0.1

exploitability 0.5

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6mvj-2dwd-w3cm

url VCID-6qzp-spy6-zkcm

vulnerability_id VCID-6qzp-spy6-zkcm

summary The Ins_JMPR function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9739.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9739.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-9739

reference_id

reference_type

scores

value	0.0129
scoring_system	epss
scoring_elements	0.80003
published_at	2026-06-04T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80038
published_at	2026-06-09T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80028
published_at	2026-06-07T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80018
published_at	2026-06-08T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80029
published_at	2026-06-05T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80034
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-9739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11714
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9611
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9611

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9612
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9612

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9726
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9726

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9727
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9727

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9835
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9835

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:P

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1475834
reference_id	1475834
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1475834

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869910
reference_id	869910
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869910

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://usn.ubuntu.com/3403-1/
reference_id	USN-3403-1
reference_type
scores
url	https://usn.ubuntu.com/3403-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-9739

risk_score 2.0

exploitability 0.5

weighted_severity 4.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6qzp-spy6-zkcm

url VCID-6rwb-apc6-jyfp

vulnerability_id VCID-6rwb-apc6-jyfp

summary sandbox escape

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14813.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14813.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-14813

reference_id

reference_type

scores

value	0.08454
scoring_system	epss
scoring_elements	0.92495
published_at	2026-06-04T12:55:00Z

value	0.08454
scoring_system	epss
scoring_elements	0.92515
published_at	2026-06-09T12:55:00Z

value	0.08454
scoring_system	epss
scoring_elements	0.92498
published_at	2026-06-07T12:55:00Z

value	0.08454
scoring_system	epss
scoring_elements	0.92497
published_at	2026-06-08T12:55:00Z

value	0.08454
scoring_system	epss
scoring_elements	0.92507
published_at	2026-06-05T12:55:00Z

value	0.08454
scoring_system	epss
scoring_elements	0.92502
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-14813

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14811
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14811

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14812
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14812

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14813
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14813

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14817
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14817

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1743737
reference_id	1743737
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1743737

reference_url	https://security.archlinux.org/ASA-201911-5
reference_id	ASA-201911-5
reference_type
scores
url	https://security.archlinux.org/ASA-201911-5

reference_url

reference_id

AVG-1031

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2012-4875

reference_url	https://security.gentoo.org/glsa/202004-03
reference_id	GLSA-202004-03
reference_type
scores
url	https://security.gentoo.org/glsa/202004-03

reference_url	https://access.redhat.com/errata/RHSA-2019:2534
reference_id	RHSA-2019:2534
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2534

reference_url	https://access.redhat.com/errata/RHSA-2019:2586
reference_id	RHSA-2019:2586
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2586

reference_url	https://access.redhat.com/errata/RHSA-2019:2591
reference_id	RHSA-2019:2591
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2591

reference_url	https://usn.ubuntu.com/4111-1/
reference_id	USN-4111-1
reference_type
scores
url	https://usn.ubuntu.com/4111-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.28~~rc2~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.28~~rc2~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.28~~rc2~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2019-14813

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6rwb-apc6-jyfp

url VCID-6vdb-d7fy-nbbe

vulnerability_id VCID-6vdb-d7fy-nbbe

summary Heap-based buffer overflow in gdevwpr2.c in Ghostscript 9.04, when processing the OutputFile device parameter, allows user-assisted remote attackers to execute arbitrary code via a long file name in a PostScript document. NOTE: as of 20120314, the developer was not able to reproduce the issue and disputed it

references

reference_url

reference_id

reference_type

scores

value	0.09321
scoring_system	epss
scoring_elements	0.9291
published_at	2026-06-08T12:55:00Z

value	0.09321
scoring_system	epss
scoring_elements	0.92921
published_at	2026-06-09T12:55:00Z

value	0.09321
scoring_system	epss
scoring_elements	0.92917
published_at	2026-06-06T12:55:00Z

value	0.09321
scoring_system	epss
scoring_elements	0.92912
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-4875

fixed_packages

url	pkg:deb/debian/ghostscript@0?distro=trixie
purl	pkg:deb/debian/ghostscript@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@0%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2012-4875

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6vdb-d7fy-nbbe

url VCID-6x4w-a58e-cybs

vulnerability_id VCID-6x4w-a58e-cybs

summary psi/zdevice2.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because available stack space is not checked when the device remains the same.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19475.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19475.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-19475

reference_id

reference_type

scores

value	0.65283
scoring_system	epss
scoring_elements	0.985
published_at	2026-06-04T12:55:00Z

value	0.65283
scoring_system	epss
scoring_elements	0.98503
published_at	2026-06-09T12:55:00Z

value	0.65283
scoring_system	epss
scoring_elements	0.98502
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-19475

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19134
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19134

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19409
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19409

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19475
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19475

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19476
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19476

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19477
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19477

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19478
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19478

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1654459
reference_id	1654459
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1654459

reference_url	https://access.redhat.com/errata/RHSA-2019:0229
reference_id	RHSA-2019:0229
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0229

reference_url	https://usn.ubuntu.com/3831-1/
reference_id	USN-3831-1
reference_type
scores
url	https://usn.ubuntu.com/3831-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.26~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.26~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.26~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-19475

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6x4w-a58e-cybs

url VCID-6yyn-x46q-hkfh

vulnerability_id VCID-6yyn-x46q-hkfh

summary Artifex Ghostscript before 10.03.0 has a heap-based overflow when PDFPassword (e.g., for runpdf) has a \000 byte in the middle.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-29509.json

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-29509.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-29509

reference_id

reference_type

scores

value	0.0215
scoring_system	epss
scoring_elements	0.84586
published_at	2026-06-09T12:55:00Z

value	0.0215
scoring_system	epss
scoring_elements	0.84585
published_at	2026-06-07T12:55:00Z

value	0.0215
scoring_system	epss
scoring_elements	0.84589
published_at	2026-06-06T12:55:00Z

value	0.0215
scoring_system	epss
scoring_elements	0.84573
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-29509

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2295628
reference_id	2295628
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2295628

reference_url

https://www.openwall.com/lists/oss-security/2024/07/03/7

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-22T16:36:26Z/

url

https://www.openwall.com/lists/oss-security/2024/07/03/7

reference_url

https://git.ghostscript.com/?p=ghostpdl.git%3Bh=917b3a71fb20748965254631199ad98210d6c2fb

reference_id

?p=ghostpdl.git%3Bh=917b3a71fb20748965254631199ad98210d6c2fb

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-22T16:36:26Z/

url

https://git.ghostscript.com/?p=ghostpdl.git%3Bh=917b3a71fb20748965254631199ad98210d6c2fb

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=707510

reference_id

show_bug.cgi?id=707510

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-22T16:36:26Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=707510

reference_url	https://usn.ubuntu.com/6897-1/
reference_id	USN-6897-1
reference_type
scores
url	https://usn.ubuntu.com/6897-1/

fixed_packages

url	pkg:deb/debian/ghostscript@0?distro=trixie
purl	pkg:deb/debian/ghostscript@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@0%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u5?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.03.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.03.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.03.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2024-29509

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6yyn-x46q-hkfh

url VCID-719b-thck-yfdj

vulnerability_id VCID-719b-thck-yfdj

summary The Ins_MDRP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9726.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9726.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-9726

reference_id

reference_type

scores

value	0.0129
scoring_system	epss
scoring_elements	0.80003
published_at	2026-06-04T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80038
published_at	2026-06-09T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80028
published_at	2026-06-07T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80018
published_at	2026-06-08T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80029
published_at	2026-06-05T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80034
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-9726

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11714
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9611
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9611

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9612
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9612

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9726
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9726

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9727
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9727

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9835
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9835

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:P

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1475830
reference_id	1475830
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1475830

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869915
reference_id	869915
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869915

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://usn.ubuntu.com/3403-1/
reference_id	USN-3403-1
reference_type
scores
url	https://usn.ubuntu.com/3403-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-9726

risk_score 2.0

exploitability 0.5

weighted_severity 4.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-719b-thck-yfdj

url VCID-73dc-4m61-b7as

vulnerability_id VCID-73dc-4m61-b7as

summary The Ins_MIRP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9611.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9611.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-9611

reference_id

reference_type

scores

value	0.00392
scoring_system	epss
scoring_elements	0.60538
published_at	2026-06-04T12:55:00Z

value	0.00392
scoring_system	epss
scoring_elements	0.60579
published_at	2026-06-09T12:55:00Z

value	0.00392
scoring_system	epss
scoring_elements	0.60581
published_at	2026-06-07T12:55:00Z

value	0.00392
scoring_system	epss
scoring_elements	0.60564
published_at	2026-06-08T12:55:00Z

value	0.00392
scoring_system	epss
scoring_elements	0.60587
published_at	2026-06-05T12:55:00Z

value	0.00392
scoring_system	epss
scoring_elements	0.60593
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-9611

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11714
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9611
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9611

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9612
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9612

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9726
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9726

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9727
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9727

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9835
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9835

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:P

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1475825
reference_id	1475825
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1475825

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869917
reference_id	869917
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869917

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://usn.ubuntu.com/3403-1/
reference_id	USN-3403-1
reference_type
scores
url	https://usn.ubuntu.com/3403-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-9611

risk_score 2.0

exploitability 0.5

weighted_severity 4.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-73dc-4m61-b7as

url VCID-79v7-73ge-17cu

vulnerability_id VCID-79v7-73ge-17cu

summary The .sethalftone5 function in psi/zht2.c in Ghostscript before 9.21 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted Postscript document that calls .sethalftone5 with an empty operand stack.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8602.json

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-8602.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-8602

reference_id

reference_type

scores

value	0.01019
scoring_system	epss
scoring_elements	0.77556
published_at	2026-06-04T12:55:00Z

value	0.01019
scoring_system	epss
scoring_elements	0.77583
published_at	2026-06-07T12:55:00Z

value	0.01019
scoring_system	epss
scoring_elements	0.77593
published_at	2026-06-09T12:55:00Z

value	0.01019
scoring_system	epss
scoring_elements	0.77591
published_at	2026-06-06T12:55:00Z

value	0.01019
scoring_system	epss
scoring_elements	0.77572
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-8602

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5653
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5653

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7976
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7976

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7977
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7977

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7978
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7978

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7979
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7979

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8602

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1383940
reference_id	1383940
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1383940

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=840451
reference_id	840451
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=840451

reference_url	https://security.gentoo.org/glsa/201702-31
reference_id	GLSA-201702-31
reference_type
scores
url	https://security.gentoo.org/glsa/201702-31

reference_url	https://access.redhat.com/errata/RHSA-2017:0013
reference_id	RHSA-2017:0013
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:0013

reference_url	https://access.redhat.com/errata/RHSA-2017:0014
reference_id	RHSA-2017:0014
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:0014

reference_url	https://usn.ubuntu.com/3148-1/
reference_id	USN-3148-1
reference_type
scores
url	https://usn.ubuntu.com/3148-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.19~dfsg-3.1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.19~dfsg-3.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.19~dfsg-3.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2016-8602

risk_score 2.6

exploitability 0.5

weighted_severity 5.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-79v7-73ge-17cu

url VCID-7bam-cv43-53h6

vulnerability_id VCID-7bam-cv43-53h6

summary Ghostscript GhostPDL 9.50 through 9.53.3 has a use-after-free in sampled_data_sample (called from sampled_data_continue and interp).

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-45944.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-45944.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-45944

reference_id

reference_type

scores

value	0.01172
scoring_system	epss
scoring_elements	0.79053
published_at	2026-06-09T12:55:00Z

value	0.01172
scoring_system	epss
scoring_elements	0.79047
published_at	2026-06-07T12:55:00Z

value	0.01172
scoring_system	epss
scoring_elements	0.79035
published_at	2026-06-08T12:55:00Z

value	0.01226
scoring_system	epss
scoring_elements	0.79506
published_at	2026-06-06T12:55:00Z

value	0.01226
scoring_system	epss
scoring_elements	0.79473
published_at	2026-06-04T12:55:00Z

value	0.01226
scoring_system	epss
scoring_elements	0.79501
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-45944

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45944
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45944

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45949
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45949

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2048916
reference_id	2048916
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2048916

reference_url	https://usn.ubuntu.com/5224-1/
reference_id	USN-5224-1
reference_type
scores
url	https://usn.ubuntu.com/5224-1/

reference_url	https://usn.ubuntu.com/5224-2/
reference_id	USN-5224-2
reference_type
scores
url	https://usn.ubuntu.com/5224-2/

fixed_packages

url	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@9.54.0~dfsg-5?distro=trixie
purl	pkg:deb/debian/ghostscript@9.54.0~dfsg-5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.54.0~dfsg-5%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2021-45944

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7bam-cv43-53h6

url VCID-7n7u-mctg-y7ex

vulnerability_id VCID-7n7u-mctg-y7ex

summary Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently read arbitrary files via the use of the .libfile operator in a crafted postscript document.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7977.json

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7977.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-7977

reference_id

reference_type

scores

value	0.01443
scoring_system	epss
scoring_elements	0.8108
published_at	2026-06-04T12:55:00Z

value	0.01443
scoring_system	epss
scoring_elements	0.81108
published_at	2026-06-07T12:55:00Z

value	0.01443
scoring_system	epss
scoring_elements	0.81122
published_at	2026-06-09T12:55:00Z

value	0.01443
scoring_system	epss
scoring_elements	0.81112
published_at	2026-06-06T12:55:00Z

value	0.01443
scoring_system	epss
scoring_elements	0.81104
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-7977

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5653
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5653

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7976
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7976

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7977
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7977

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7978
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7978

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7979
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7979

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8602

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:C/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1380415
reference_id	1380415
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1380415

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=839841
reference_id	839841
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=839841

reference_url	https://security.gentoo.org/glsa/201702-31
reference_id	GLSA-201702-31
reference_type
scores
url	https://security.gentoo.org/glsa/201702-31

reference_url	https://access.redhat.com/errata/RHSA-2017:0013
reference_id	RHSA-2017:0013
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:0013

reference_url	https://access.redhat.com/errata/RHSA-2017:0014
reference_id	RHSA-2017:0014
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:0014

reference_url	https://usn.ubuntu.com/3148-1/
reference_id	USN-3148-1
reference_type
scores
url	https://usn.ubuntu.com/3148-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.19~dfsg-3.1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.19~dfsg-3.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.19~dfsg-3.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2016-7977

risk_score 2.8

exploitability 0.5

weighted_severity 5.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7n7u-mctg-y7ex

url VCID-7xyj-a6nq-3qdb

vulnerability_id VCID-7xyj-a6nq-3qdb

summary An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-46956.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-46956.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-46956

reference_id

reference_type

scores

value	0.00301
scoring_system	epss
scoring_elements	0.53731
published_at	2026-06-09T12:55:00Z

value	0.00301
scoring_system	epss
scoring_elements	0.53736
published_at	2026-06-05T12:55:00Z

value	0.00301
scoring_system	epss
scoring_elements	0.53744
published_at	2026-06-06T12:55:00Z

value	0.00301
scoring_system	epss
scoring_elements	0.53732
published_at	2026-06-07T12:55:00Z

value	0.00301
scoring_system	epss
scoring_elements	0.53708
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-46956

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-46956
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-46956

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2325047
reference_id	2325047
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2325047

reference_url	https://security.gentoo.org/glsa/202501-06
reference_id	GLSA-202501-06
reference_type
scores
url	https://security.gentoo.org/glsa/202501-06

reference_url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=f4151f12db32cd3ed26c24327de714bf2c3ed6ca

reference_id

?id=f4151f12db32cd3ed26c24327de714bf2c3ed6ca

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T19:58:48Z/

url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=f4151f12db32cd3ed26c24327de714bf2c3ed6ca

reference_url

https://github.com/ArtifexSoftware/ghostpdl/blob/master/doc/News.html

reference_id

News.html

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T19:58:48Z/

url

https://github.com/ArtifexSoftware/ghostpdl/blob/master/doc/News.html

reference_url	https://access.redhat.com/errata/RHSA-2025:4362
reference_id	RHSA-2025:4362
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4362

reference_url	https://access.redhat.com/errata/RHSA-2025:7422
reference_id	RHSA-2025:7422
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7422

reference_url	https://access.redhat.com/errata/RHSA-2025:7499
reference_id	RHSA-2025:7499
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7499

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=707895

reference_id

show_bug.cgi?id=707895

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T19:58:48Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=707895

reference_url

https://www.suse.com/support/update/announcement/2024/suse-su-20243942-1/

reference_id

suse-su-20243942-1

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T19:58:48Z/

url

https://www.suse.com/support/update/announcement/2024/suse-su-20243942-1/

reference_url	https://usn.ubuntu.com/7103-1/
reference_id	USN-7103-1
reference_type
scores
url	https://usn.ubuntu.com/7103-1/

reference_url	https://usn.ubuntu.com/7138-1/
reference_id	USN-7138-1
reference_type
scores
url	https://usn.ubuntu.com/7138-1/

fixed_packages

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u9?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u9?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u9%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u6?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u6%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.04.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.04.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.04.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2024-46956

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7xyj-a6nq-3qdb

url VCID-81cb-24sy-xuek

vulnerability_id VCID-81cb-24sy-xuek

summary In Artifex Ghostscript through 10.01.2, gdevijs.c in GhostPDL can lead to remote code execution via crafted PostScript documents because they can switch to the IJS device, or change the IjsServer parameter, after SAFER has been activated. NOTE: it is a documented risk that the IJS server can be specified on a gs command line (the IJS device inherently must execute a command to start the IJS server).

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43115.json

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43115.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-43115

reference_id

reference_type

scores

value	0.21677
scoring_system	epss
scoring_elements	0.95845
published_at	2026-06-05T12:55:00Z

value	0.21677
scoring_system	epss
scoring_elements	0.95848
published_at	2026-06-08T12:55:00Z

value	0.21677
scoring_system	epss
scoring_elements	0.95852
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-43115

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43115
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43115

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2241108
reference_id	2241108
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2241108

reference_url	https://access.redhat.com/errata/RHSA-2023:5868
reference_id	RHSA-2023:5868
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5868

reference_url	https://access.redhat.com/errata/RHSA-2023:6265
reference_id	RHSA-2023:6265
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6265

reference_url	https://access.redhat.com/errata/RHSA-2023:6732
reference_id	RHSA-2023:6732
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6732

reference_url	https://usn.ubuntu.com/6433-1/
reference_id	USN-6433-1
reference_type
scores
url	https://usn.ubuntu.com/6433-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u6?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u6%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u2?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u2%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.02.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.02.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.02.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2023-43115

risk_score 4.0

exploitability 0.5

weighted_severity 7.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-81cb-24sy-xuek

url VCID-83v1-dgdt-77hk

vulnerability_id VCID-83v1-dgdt-77hk

summary Heap-based buffer overflow in the big2_decode_symbol_dict function (jbig2_symbol_dict.c) in the JBIG2 decoding library (jbig2dec) in Ghostscript 8.64, and probably earlier versions, allows remote attackers to execute arbitrary code via a PDF file with a JBIG2 symbol dictionary segment with a large run length value.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0196.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0196.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-0196

reference_id

reference_type

scores

value	0.09527
scoring_system	epss
scoring_elements	0.93005
published_at	2026-06-06T12:55:00Z

value	0.09527
scoring_system	epss
scoring_elements	0.93001
published_at	2026-06-07T12:55:00Z

value	0.09527
scoring_system	epss
scoring_elements	0.92999
published_at	2026-06-08T12:55:00Z

value	0.09527
scoring_system	epss
scoring_elements	0.93008
published_at	2026-06-09T12:55:00Z

value	0.12164
scoring_system	epss
scoring_elements	0.93955
published_at	2026-06-04T12:55:00Z

value	0.12164
scoring_system	epss
scoring_elements	0.93964
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-0196

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0196
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0196

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=493379
reference_id	493379
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=493379

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=524803
reference_id	524803
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=524803

reference_url	https://security.gentoo.org/glsa/201412-17
reference_id	GLSA-201412-17
reference_type
scores
url	https://security.gentoo.org/glsa/201412-17

reference_url	https://access.redhat.com/errata/RHSA-2009:0421
reference_id	RHSA-2009:0421
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:0421

reference_url	https://usn.ubuntu.com/757-1/
reference_id	USN-757-1
reference_type
scores
url	https://usn.ubuntu.com/757-1/

fixed_packages

url	pkg:deb/debian/ghostscript@8.64~dfsg-1.1?distro=trixie
purl	pkg:deb/debian/ghostscript@8.64~dfsg-1.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.64~dfsg-1.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2009-0196

risk_score 0.1

exploitability 0.5

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-83v1-dgdt-77hk

url VCID-8c97-j8bq-rycv

vulnerability_id VCID-8c97-j8bq-rycv

summary The CCITTFax decoding filter in Ghostscript 8.60, 8.61, and possibly other versions, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PDF file that triggers a buffer underflow in the cf_decode_2d function.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6725.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2007-6725.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2007-6725

reference_id

reference_type

scores

value	0.06173
scoring_system	epss
scoring_elements	0.90995
published_at	2026-06-04T12:55:00Z

value	0.06173
scoring_system	epss
scoring_elements	0.91009
published_at	2026-06-05T12:55:00Z

value	0.06173
scoring_system	epss
scoring_elements	0.91007
published_at	2026-06-06T12:55:00Z

value	0.06173
scoring_system	epss
scoring_elements	0.91004
published_at	2026-06-07T12:55:00Z

value	0.06173
scoring_system	epss
scoring_elements	0.91001
published_at	2026-06-08T12:55:00Z

value	0.06173
scoring_system	epss
scoring_elements	0.91017
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2007-6725

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6725
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-6725

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=493442
reference_id	493442
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=493442

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=524803
reference_id	524803
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=524803

reference_url	https://access.redhat.com/errata/RHSA-2009:0420
reference_id	RHSA-2009:0420
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:0420

reference_url	https://access.redhat.com/errata/RHSA-2009:0421
reference_id	RHSA-2009:0421
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:0421

reference_url	https://usn.ubuntu.com/757-1/
reference_id	USN-757-1
reference_type
scores
url	https://usn.ubuntu.com/757-1/

fixed_packages

url	pkg:deb/debian/ghostscript@8.63.dfsg.1-1?distro=trixie
purl	pkg:deb/debian/ghostscript@8.63.dfsg.1-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.63.dfsg.1-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2007-6725

risk_score 0.1

exploitability 0.5

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8c97-j8bq-rycv

url VCID-8jz3-afj6-r3bt

vulnerability_id VCID-8jz3-afj6-r3bt

summary Use-after-free vulnerability in Ghostscript 9.20 might allow remote attackers to execute arbitrary code via vectors related to a reference leak in .setdevice.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7978.json

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7978.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-7978

reference_id

reference_type

scores

value	0.02959
scoring_system	epss
scoring_elements	0.8674
published_at	2026-06-04T12:55:00Z

value	0.02959
scoring_system	epss
scoring_elements	0.86762
published_at	2026-06-05T12:55:00Z

value	0.02959
scoring_system	epss
scoring_elements	0.86761
published_at	2026-06-06T12:55:00Z

value	0.02959
scoring_system	epss
scoring_elements	0.86758
published_at	2026-06-07T12:55:00Z

value	0.02959
scoring_system	epss
scoring_elements	0.86747
published_at	2026-06-08T12:55:00Z

value	0.02959
scoring_system	epss
scoring_elements	0.86759
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-7978

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5653
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5653

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7976
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7976

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7977
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7977

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7978
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7978

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7979
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7979

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8602

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1382300
reference_id	1382300
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1382300

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=839845
reference_id	839845
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=839845

reference_url	https://security.gentoo.org/glsa/201702-31
reference_id	GLSA-201702-31
reference_type
scores
url	https://security.gentoo.org/glsa/201702-31

reference_url	https://access.redhat.com/errata/RHSA-2017:0013
reference_id	RHSA-2017:0013
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:0013

reference_url	https://usn.ubuntu.com/3148-1/
reference_id	USN-3148-1
reference_type
scores
url	https://usn.ubuntu.com/3148-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.19~dfsg-3.1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.19~dfsg-3.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.19~dfsg-3.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2016-7978

risk_score 2.6

exploitability 0.5

weighted_severity 5.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8jz3-afj6-r3bt

url VCID-8r5r-46am-9uat

vulnerability_id VCID-8r5r-46am-9uat

summary The xps_decode_font_char_imp function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9740.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9740.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-9740

reference_id

reference_type

scores

value	0.00407
scoring_system	epss
scoring_elements	0.6147
published_at	2026-06-04T12:55:00Z

value	0.00407
scoring_system	epss
scoring_elements	0.61518
published_at	2026-06-05T12:55:00Z

value	0.00407
scoring_system	epss
scoring_elements	0.61525
published_at	2026-06-06T12:55:00Z

value	0.00407
scoring_system	epss
scoring_elements	0.61513
published_at	2026-06-07T12:55:00Z

value	0.00407
scoring_system	epss
scoring_elements	0.61497
published_at	2026-06-08T12:55:00Z

value	0.00407
scoring_system	epss
scoring_elements	0.61517
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-9740

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9740
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9740

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1475836
reference_id	1475836
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1475836

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869879
reference_id	869879
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869879

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-9740

risk_score 1.5

exploitability 0.5

weighted_severity 3.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8r5r-46am-9uat

url VCID-8zd7-8fgg-5bc2

vulnerability_id VCID-8zd7-8fgg-5bc2

summary The gs_alloc_ref_array function in psi/ialloc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript document. This is related to a lack of an integer overflow check in base/gsalloc.c.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9835.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9835.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-9835

reference_id

reference_type

scores

value	0.00286
scoring_system	epss
scoring_elements	0.5228
published_at	2026-06-04T12:55:00Z

value	0.00286
scoring_system	epss
scoring_elements	0.52318
published_at	2026-06-09T12:55:00Z

value	0.00286
scoring_system	epss
scoring_elements	0.52327
published_at	2026-06-07T12:55:00Z

value	0.00286
scoring_system	epss
scoring_elements	0.52297
published_at	2026-06-08T12:55:00Z

value	0.00286
scoring_system	epss
scoring_elements	0.5234
published_at	2026-06-05T12:55:00Z

value	0.00286
scoring_system	epss
scoring_elements	0.52347
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-9835

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11714
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9611
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9611

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9612
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9612

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9726
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9726

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9727
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9727

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9835
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9835

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:P

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1475837
reference_id	1475837
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1475837

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869907
reference_id	869907
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869907

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://usn.ubuntu.com/3403-1/
reference_id	USN-3403-1
reference_type
scores
url	https://usn.ubuntu.com/3403-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-9835

risk_score 2.0

exploitability 0.5

weighted_severity 4.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-8zd7-8fgg-5bc2

url VCID-91rx-gr4a-3bbw

vulnerability_id VCID-91rx-gr4a-3bbw

summary Ghostscript 8.64, 8.70, and possibly other versions allows context-dependent attackers to execute arbitrary code via a PostScript file containing unlimited recursive procedure invocations, which trigger memory corruption in the stack of the interpreter.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1628.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-1628.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-1628

reference_id

reference_type

scores

value	0.0512
scoring_system	epss
scoring_elements	0.90016
published_at	2026-06-04T12:55:00Z

value	0.0512
scoring_system	epss
scoring_elements	0.90031
published_at	2026-06-06T12:55:00Z

value	0.0512
scoring_system	epss
scoring_elements	0.90029
published_at	2026-06-07T12:55:00Z

value	0.0512
scoring_system	epss
scoring_elements	0.90027
published_at	2026-06-08T12:55:00Z

value	0.0512
scoring_system	epss
scoring_elements	0.90042
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-1628

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1628
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1628

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584516
reference_id	584516
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584516

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=592492
reference_id	592492
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=592492

reference_url	https://security.gentoo.org/glsa/201412-17
reference_id	GLSA-201412-17
reference_type
scores
url	https://security.gentoo.org/glsa/201412-17

reference_url	https://usn.ubuntu.com/961-1/
reference_id	USN-961-1
reference_type
scores
url	https://usn.ubuntu.com/961-1/

fixed_packages

url	pkg:deb/debian/ghostscript@8.71~dfsg2-4?distro=trixie
purl	pkg:deb/debian/ghostscript@8.71~dfsg2-4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.71~dfsg2-4%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2010-1628

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-91rx-gr4a-3bbw

url VCID-929a-zvd9-c7h7

vulnerability_id VCID-929a-zvd9-c7h7

summary A null pointer dereference vulnerability in clj_media_size() in devices/gdevclj.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16295.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16295.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16295

reference_id

reference_type

scores

value	0.00467
scoring_system	epss
scoring_elements	0.64763
published_at	2026-06-04T12:55:00Z

value	0.00742
scoring_system	epss
scoring_elements	0.73387
published_at	2026-06-06T12:55:00Z

value	0.00742
scoring_system	epss
scoring_elements	0.73373
published_at	2026-06-07T12:55:00Z

value	0.00742
scoring_system	epss
scoring_elements	0.7336
published_at	2026-06-08T12:55:00Z

value	0.00742
scoring_system	epss
scoring_elements	0.73385
published_at	2026-06-09T12:55:00Z

value	0.00742
scoring_system	epss
scoring_elements	0.73382
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870179
reference_id	1870179
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870179

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16295

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-929a-zvd9-c7h7

url VCID-96ma-mp34-sqd5

vulnerability_id VCID-96ma-mp34-sqd5

summary sandbox escape

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18284.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18284.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-18284

reference_id

reference_type

scores

value	0.00301
scoring_system	epss
scoring_elements	0.537
published_at	2026-06-04T12:55:00Z

value	0.00301
scoring_system	epss
scoring_elements	0.53754
published_at	2026-06-09T12:55:00Z

value	0.00301
scoring_system	epss
scoring_elements	0.53755
published_at	2026-06-07T12:55:00Z

value	0.00301
scoring_system	epss
scoring_elements	0.53731
published_at	2026-06-08T12:55:00Z

value	0.00301
scoring_system	epss
scoring_elements	0.53758
published_at	2026-06-05T12:55:00Z

value	0.00301
scoring_system	epss
scoring_elements	0.53767
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-18284

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11645
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11645

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17961
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17961

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18073
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18073

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18284
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18284

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1642940
reference_id	1642940
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1642940

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911175
reference_id	911175
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=911175

reference_url	https://security.archlinux.org/ASA-201811-3
reference_id	ASA-201811-3
reference_type
scores
url	https://security.archlinux.org/ASA-201811-3

reference_url

reference_id

AVG-786

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27836.json

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://access.redhat.com/errata/RHSA-2018:3834
reference_id	RHSA-2018:3834
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3834

reference_url	https://usn.ubuntu.com/3803-1/
reference_id	USN-3803-1
reference_type
scores
url	https://usn.ubuntu.com/3803-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.25~dfsg-3?distro=trixie
purl	pkg:deb/debian/ghostscript@9.25~dfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.25~dfsg-3%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-18284

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-96ma-mp34-sqd5

url VCID-9b2s-hfuj-kuhb

vulnerability_id VCID-9b2s-hfuj-kuhb

summary An issue was discovered in Artifex Ghostscript before 10.05.0. The BJ10V device has a Print buffer overflow in contrib/japanese/gdev10v.c.

references

reference_url

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27836.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-27836

reference_id

reference_type

scores

value	0.0017
scoring_system	epss
scoring_elements	0.38028
published_at	2026-06-09T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.3808
published_at	2026-06-06T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38051
published_at	2026-06-07T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38017
published_at	2026-06-08T12:55:00Z

value	0.0017
scoring_system	epss
scoring_elements	0.38077
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-27836

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27836
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27836

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2354952
reference_id	2354952
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2354952

reference_url	https://security.gentoo.org/glsa/202508-02
reference_id	GLSA-202508-02
reference_type
scores
url	https://security.gentoo.org/glsa/202508-02

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=708192

reference_id

show_bug.cgi?id=708192

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-03-26T13:18:16Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=708192

reference_url	https://usn.ubuntu.com/7378-1/
reference_id	USN-7378-1
reference_type
scores
url	https://usn.ubuntu.com/7378-1/

reference_url	https://usn.ubuntu.com/7623-1/
reference_id	USN-7623-1
reference_type
scores
url	https://usn.ubuntu.com/7623-1/

fixed_packages

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u10?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u10?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u10%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u7?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.05.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.05.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2025-27836

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9b2s-hfuj-kuhb

url VCID-9mvw-1rzc-8bh4

vulnerability_id VCID-9mvw-1rzc-8bh4

summary A buffer overflow vulnerability in lxm5700m_print_page() in devices/gdevlxm.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted eps file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16309.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16309.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16309

reference_id

reference_type

scores

value	0.01475
scoring_system	epss
scoring_elements	0.81294
published_at	2026-06-04T12:55:00Z

value	0.01475
scoring_system	epss
scoring_elements	0.81322
published_at	2026-06-05T12:55:00Z

value	0.01475
scoring_system	epss
scoring_elements	0.81325
published_at	2026-06-06T12:55:00Z

value	0.01475
scoring_system	epss
scoring_elements	0.81323
published_at	2026-06-07T12:55:00Z

value	0.01475
scoring_system	epss
scoring_elements	0.81319
published_at	2026-06-08T12:55:00Z

value	0.01475
scoring_system	epss
scoring_elements	0.81336
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870248
reference_id	1870248
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870248

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16309

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9mvw-1rzc-8bh4

url VCID-9teg-mj28-xfde

vulnerability_id VCID-9teg-mj28-xfde

summary An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. An unchecked Implementation pointer in Pattern color space could lead to arbitrary code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-46951.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-46951.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-46951

reference_id

reference_type

scores

value	0.00127
scoring_system	epss
scoring_elements	0.31601
published_at	2026-06-09T12:55:00Z

value	0.00127
scoring_system	epss
scoring_elements	0.31681
published_at	2026-06-05T12:55:00Z

value	0.00127
scoring_system	epss
scoring_elements	0.31648
published_at	2026-06-06T12:55:00Z

value	0.00127
scoring_system	epss
scoring_elements	0.3161
published_at	2026-06-07T12:55:00Z

value	0.00127
scoring_system	epss
scoring_elements	0.31577
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-46951

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-46951
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-46951

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2325043
reference_id	2325043
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2325043

reference_url	https://security.gentoo.org/glsa/202501-06
reference_id	GLSA-202501-06
reference_type
scores
url	https://security.gentoo.org/glsa/202501-06

reference_url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=f49812186baa7d1362880673408a6fbe8719b4f8

reference_id

?id=f49812186baa7d1362880673408a6fbe8719b4f8

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T19:59:49Z/

url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=f49812186baa7d1362880673408a6fbe8719b4f8

reference_url

https://github.com/ArtifexSoftware/ghostpdl/blob/master/doc/News.html

reference_id

News.html

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T19:59:49Z/

url

https://github.com/ArtifexSoftware/ghostpdl/blob/master/doc/News.html

reference_url	https://access.redhat.com/errata/RHSA-2025:4362
reference_id	RHSA-2025:4362
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4362

reference_url	https://access.redhat.com/errata/RHSA-2025:7422
reference_id	RHSA-2025:7422
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7422

reference_url	https://access.redhat.com/errata/RHSA-2025:7499
reference_id	RHSA-2025:7499
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7499

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=707991

reference_id

show_bug.cgi?id=707991

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T19:59:49Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=707991

reference_url

https://www.suse.com/support/update/announcement/2024/suse-su-20243942-1/

reference_id

suse-su-20243942-1

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T19:59:49Z/

url

https://www.suse.com/support/update/announcement/2024/suse-su-20243942-1/

reference_url	https://usn.ubuntu.com/7103-1/
reference_id	USN-7103-1
reference_type
scores
url	https://usn.ubuntu.com/7103-1/

reference_url	https://usn.ubuntu.com/7138-1/
reference_id	USN-7138-1
reference_type
scores
url	https://usn.ubuntu.com/7138-1/

fixed_packages

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u9?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u9?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u9%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u6?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u6%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.04.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.04.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.04.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2024-46951

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9teg-mj28-xfde

url VCID-9yhn-3eeu-dbda

vulnerability_id VCID-9yhn-3eeu-dbda

summary A buffer overflow vulnerability in tiff12_print_page() in devices/gdevtfnx.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16300.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16300.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16300

reference_id

reference_type

scores

value	0.01091
scoring_system	epss
scoring_elements	0.78284
published_at	2026-06-04T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.7831
published_at	2026-06-05T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78318
published_at	2026-06-06T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78308
published_at	2026-06-07T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78296
published_at	2026-06-08T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78314
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870169
reference_id	1870169
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870169

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16300

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9yhn-3eeu-dbda

url VCID-a4t6-chu1-jyae

vulnerability_id VCID-a4t6-chu1-jyae

summary A buffer overflow vulnerability in okiibm_print_page1() in devices/gdevokii.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16301.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16301.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16301

reference_id

reference_type

scores

value	0.00449
scoring_system	epss
scoring_elements	0.63927
published_at	2026-06-04T12:55:00Z

value	0.00449
scoring_system	epss
scoring_elements	0.6397
published_at	2026-06-05T12:55:00Z

value	0.00449
scoring_system	epss
scoring_elements	0.63977
published_at	2026-06-06T12:55:00Z

value	0.00449
scoring_system	epss
scoring_elements	0.63967
published_at	2026-06-07T12:55:00Z

value	0.00449
scoring_system	epss
scoring_elements	0.63955
published_at	2026-06-08T12:55:00Z

value	0.00449
scoring_system	epss
scoring_elements	0.63975
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870167
reference_id	1870167
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870167

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16301

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-a4t6-chu1-jyae

url VCID-ackv-sn1m-kkgr

vulnerability_id VCID-ackv-sn1m-kkgr

summary The pdf14_open function in base/gdevp14.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted file that is mishandled in the color management module.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10217.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10217.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-10217

reference_id

reference_type

scores

value	0.00734
scoring_system	epss
scoring_elements	0.73123
published_at	2026-06-04T12:55:00Z

value	0.00734
scoring_system	epss
scoring_elements	0.73161
published_at	2026-06-05T12:55:00Z

value	0.00734
scoring_system	epss
scoring_elements	0.73167
published_at	2026-06-06T12:55:00Z

value	0.00734
scoring_system	epss
scoring_elements	0.73149
published_at	2026-06-07T12:55:00Z

value	0.00734
scoring_system	epss
scoring_elements	0.73135
published_at	2026-06-08T12:55:00Z

value	0.00734
scoring_system	epss
scoring_elements	0.7316
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-10217

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10217
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10217

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.4
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1441564
reference_id	1441564
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1441564

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859662
reference_id	859662
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859662

reference_url	https://usn.ubuntu.com/3272-1/
reference_id	USN-3272-1
reference_type
scores
url	https://usn.ubuntu.com/3272-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.20~dfsg-3.1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.20~dfsg-3.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.20~dfsg-3.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2016-10217

risk_score 1.5

exploitability 0.5

weighted_severity 3.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ackv-sn1m-kkgr

url VCID-afrh-89cf-8ffb

vulnerability_id VCID-afrh-89cf-8ffb

summary A buffer overflow vulnerability in pcx_write_rle() in contrib/japanese/gdev10v.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16305.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16305.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16305

reference_id

reference_type

scores

value	0.00474
scoring_system	epss
scoring_elements	0.65111
published_at	2026-06-04T12:55:00Z

value	0.00474
scoring_system	epss
scoring_elements	0.65153
published_at	2026-06-05T12:55:00Z

value	0.00474
scoring_system	epss
scoring_elements	0.65163
published_at	2026-06-06T12:55:00Z

value	0.00474
scoring_system	epss
scoring_elements	0.65152
published_at	2026-06-07T12:55:00Z

value	0.00474
scoring_system	epss
scoring_elements	0.6514
published_at	2026-06-08T12:55:00Z

value	0.00474
scoring_system	epss
scoring_elements	0.65157
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870257
reference_id	1870257
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870257

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16305

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-afrh-89cf-8ffb

url VCID-ajg5-8cf3-2bad

vulnerability_id VCID-ajg5-8cf3-2bad

summary An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string (for the output filename) results in path truncation, and possible path traversal and code execution.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-46953.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-46953.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-46953

reference_id

reference_type

scores

value	0.00108
scoring_system	epss
scoring_elements	0.28587
published_at	2026-06-09T12:55:00Z

value	0.00108
scoring_system	epss
scoring_elements	0.28691
published_at	2026-06-05T12:55:00Z

value	0.00108
scoring_system	epss
scoring_elements	0.2865
published_at	2026-06-06T12:55:00Z

value	0.00108
scoring_system	epss
scoring_elements	0.28613
published_at	2026-06-07T12:55:00Z

value	0.00108
scoring_system	epss
scoring_elements	0.2858
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-46953

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-46953
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-46953

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2325045
reference_id	2325045
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2325045

reference_url	https://security.gentoo.org/glsa/202501-06
reference_id	GLSA-202501-06
reference_type
scores
url	https://security.gentoo.org/glsa/202501-06

reference_url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=1f21a45df0fa3abec4cff12951022b192dda3c00

reference_id

?id=1f21a45df0fa3abec4cff12951022b192dda3c00

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T19:59:32Z/

url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=1f21a45df0fa3abec4cff12951022b192dda3c00

reference_url

https://github.com/ArtifexSoftware/ghostpdl/blob/master/doc/News.html

reference_id

News.html

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T19:59:32Z/

url

https://github.com/ArtifexSoftware/ghostpdl/blob/master/doc/News.html

reference_url	https://access.redhat.com/errata/RHSA-2025:4362
reference_id	RHSA-2025:4362
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4362

reference_url	https://access.redhat.com/errata/RHSA-2025:7422
reference_id	RHSA-2025:7422
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7422

reference_url	https://access.redhat.com/errata/RHSA-2025:7499
reference_id	RHSA-2025:7499
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7499

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=707793

reference_id

show_bug.cgi?id=707793

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T19:59:32Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=707793

reference_url

https://www.suse.com/support/update/announcement/2024/suse-su-20243942-1/

reference_id

suse-su-20243942-1

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T19:59:32Z/

url

https://www.suse.com/support/update/announcement/2024/suse-su-20243942-1/

reference_url	https://usn.ubuntu.com/7103-1/
reference_id	USN-7103-1
reference_type
scores
url	https://usn.ubuntu.com/7103-1/

reference_url	https://usn.ubuntu.com/7138-1/
reference_id	USN-7138-1
reference_type
scores
url	https://usn.ubuntu.com/7138-1/

fixed_packages

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u9?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u9?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u9%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u6?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u6%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.04.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.04.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.04.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2024-46953

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ajg5-8cf3-2bad

url VCID-ajxd-rc63-afc2

vulnerability_id VCID-ajxd-rc63-afc2

summary sandbox escape

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14869.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14869.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-14869

reference_id

reference_type

scores

value	0.00503
scoring_system	epss
scoring_elements	0.66469
published_at	2026-06-04T12:55:00Z

value	0.00503
scoring_system	epss
scoring_elements	0.66505
published_at	2026-06-09T12:55:00Z

value	0.00503
scoring_system	epss
scoring_elements	0.66502
published_at	2026-06-07T12:55:00Z

value	0.00503
scoring_system	epss
scoring_elements	0.66487
published_at	2026-06-08T12:55:00Z

value	0.00503
scoring_system	epss
scoring_elements	0.6651
published_at	2026-06-05T12:55:00Z

value	0.00503
scoring_system	epss
scoring_elements	0.66518
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-14869

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14869
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14869

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1768911
reference_id	1768911
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1768911

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=944760
reference_id	944760
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=944760

reference_url

https://security.archlinux.org/AVG-1069

reference_id

AVG-1069

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-1069

reference_url	https://access.redhat.com/errata/RHSA-2019:3888
reference_id	RHSA-2019:3888
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3888

reference_url	https://access.redhat.com/errata/RHSA-2019:3890
reference_id	RHSA-2019:3890
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:3890

reference_url	https://access.redhat.com/errata/RHSA-2020:0222
reference_id	RHSA-2020:0222
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2020:0222

reference_url	https://usn.ubuntu.com/4193-1/
reference_id	USN-4193-1
reference_type
scores
url	https://usn.ubuntu.com/4193-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.50~dfsg-3?distro=trixie
purl	pkg:deb/debian/ghostscript@9.50~dfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.50~dfsg-3%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2019-14869

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ajxd-rc63-afc2

url VCID-auea-2m6f-e7hg

vulnerability_id VCID-auea-2m6f-e7hg

summary An issue was discovered in Artifex Ghostscript before 9.24. Incorrect "restoration of privilege" checking during handling of /invalidaccess exceptions could be used by attackers able to supply crafted PostScript to execute code using the "pipe" instruction.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16509.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16509.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16509

reference_id

reference_type

scores

value	0.9181
scoring_system	epss
scoring_elements	0.99703
published_at	2026-06-05T12:55:00Z

value	0.9181
scoring_system	epss
scoring_elements	0.99702
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16509

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16509
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16509

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16802
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16802

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17183
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17183

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1619748
reference_id	1619748
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1619748

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332
reference_id	907332
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/45369.rb
reference_id	CVE-2018-16509
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/local/45369.rb

reference_url	https://raw.githubusercontent.com/rapid7/metasploit-framework/7f20178a0572176d2d57118e1e5cc3ef9c434656/modules/exploits/multi/fileformat/ghostscript_failed_restore.rb
reference_id	CVE-2018-16509
reference_type	exploit
scores
url	https://raw.githubusercontent.com/rapid7/metasploit-framework/7f20178a0572176d2d57118e1e5cc3ef9c434656/modules/exploits/multi/fileformat/ghostscript_failed_restore.rb

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://access.redhat.com/errata/RHSA-2018:2918
reference_id	RHSA-2018:2918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:2918

reference_url	https://access.redhat.com/errata/RHSA-2018:3760
reference_id	RHSA-2018:3760
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3760

fixed_packages

url	pkg:deb/debian/ghostscript@9.25~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.25~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.25~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-16509

risk_score 10.0

exploitability 2.0

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-auea-2m6f-e7hg

url VCID-avcj-sjqm-jkbp

vulnerability_id VCID-avcj-sjqm-jkbp

summary Artifex Ghostscript through 10.05.1 has a stack-based buffer overflow in pdf_write_cmap in devices/vector/gdevpdtw.c.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59798.json

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59798.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-59798

reference_id

reference_type

scores

value	0.00018
scoring_system	epss
scoring_elements	0.04679
published_at	2026-06-05T12:55:00Z

value	0.00018
scoring_system	epss
scoring_elements	0.04651
published_at	2026-06-07T12:55:00Z

value	0.00018
scoring_system	epss
scoring_elements	0.04664
published_at	2026-06-06T12:55:00Z

value	0.00024
scoring_system	epss
scoring_elements	0.06877
published_at	2026-06-09T12:55:00Z

value	0.00024
scoring_system	epss
scoring_elements	0.06871
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-59798

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59798
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59798

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1116444
reference_id	1116444
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1116444

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2397225
reference_id	2397225
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2397225

reference_url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=0cae41b23a9669e801211dd4cf97b6dadd6dbdd7

reference_id

?id=0cae41b23a9669e801211dd4cf97b6dadd6dbdd7

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-23T13:54:24Z/

url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=0cae41b23a9669e801211dd4cf97b6dadd6dbdd7

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=708539

reference_id

show_bug.cgi?id=708539

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-23T13:54:24Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=708539

reference_url	https://usn.ubuntu.com/7782-1/
reference_id	USN-7782-1
reference_type
scores
url	https://usn.ubuntu.com/7782-1/

reference_url	https://usn.ubuntu.com/7904-1/
reference_id	USN-7904-1
reference_type
scores
url	https://usn.ubuntu.com/7904-1/

fixed_packages

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u11?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u11?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u11%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.06.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.06.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.06.0~dfsg-1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2025-59798

risk_score 1.8

exploitability 0.5

weighted_severity 3.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-avcj-sjqm-jkbp

url VCID-b2kr-wrz6-rqfq

vulnerability_id VCID-b2kr-wrz6-rqfq

summary In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files to the builtin PDF14 converter could use a use-after-free in copydevice handling to crash the interpreter or possibly have unspecified other impact.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16540.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16540.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16540

reference_id

reference_type

scores

value	0.00284
scoring_system	epss
scoring_elements	0.52064
published_at	2026-06-04T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.52125
published_at	2026-06-05T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.52134
published_at	2026-06-06T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.52114
published_at	2026-06-07T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.52082
published_at	2026-06-08T12:55:00Z

value	0.00284
scoring_system	epss
scoring_elements	0.52101
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16540

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1625843
reference_id	1625843
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1625843

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332
reference_id	907332
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://access.redhat.com/errata/RHSA-2019:0229
reference_id	RHSA-2019:0229
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0229

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-3?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-3%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-16540

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-b2kr-wrz6-rqfq

url VCID-bb6q-bj9y-6udr

vulnerability_id VCID-bb6q-bj9y-6udr

summary Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices (with the %pipe% prefix or the | pipe character prefix).

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-36664.json

reference_id

reference_type

scores

value	8.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-36664.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-36664

reference_id

reference_type

scores

value	0.06431
scoring_system	epss
scoring_elements	0.9124
published_at	2026-06-09T12:55:00Z

value	0.06431
scoring_system	epss
scoring_elements	0.91232
published_at	2026-06-06T12:55:00Z

value	0.06431
scoring_system	epss
scoring_elements	0.91229
published_at	2026-06-07T12:55:00Z

value	0.06431
scoring_system	epss
scoring_elements	0.91225
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-36664

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36664
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36664

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2217798
reference_id	2217798
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2217798

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ICXN5VPF3WJCYKMPSYER5KHTPJXSTJZ/

reference_id

2ICXN5VPF3WJCYKMPSYER5KHTPJXSTJZ

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-05T14:54:02Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2ICXN5VPF3WJCYKMPSYER5KHTPJXSTJZ/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5EWMEK2UPCUU3ZLL7VASE5CEHDQY4VKV/

reference_id

5EWMEK2UPCUU3ZLL7VASE5CEHDQY4VKV

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-05T14:54:02Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5EWMEK2UPCUU3ZLL7VASE5CEHDQY4VKV/

reference_url

https://www.debian.org/security/2023/dsa-5446

reference_id

dsa-5446

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-05T14:54:02Z/

url

https://www.debian.org/security/2023/dsa-5446

reference_url

reference_id

GLSA-202309-03

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-05T14:54:02Z/

url

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=0974e4f2ac0005d3731e0b5c13ebc7e965540f4d

reference_url

reference_id

?p=ghostpdl.git%3Ba=commit%3Bh=0974e4f2ac0005d3731e0b5c13ebc7e965540f4d

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-05T14:54:02Z/

url

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=0974e4f2ac0005d3731e0b5c13ebc7e965540f4d

reference_url

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=505eab7782b429017eb434b2b95120855f2b0e3c

reference_id

?p=ghostpdl.git%3Ba=commit%3Bh=505eab7782b429017eb434b2b95120855f2b0e3c

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-05T14:54:02Z/

url

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=505eab7782b429017eb434b2b95120855f2b0e3c

reference_url	https://access.redhat.com/errata/RHSA-2023:4324
reference_id	RHSA-2023:4324
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4324

reference_url	https://access.redhat.com/errata/RHSA-2023:5459
reference_id	RHSA-2023:5459
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5459

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=706761

reference_id

show_bug.cgi?id=706761

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-12-05T14:54:02Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=706761

reference_url	https://usn.ubuntu.com/6213-1/
reference_id	USN-6213-1
reference_type
scores
url	https://usn.ubuntu.com/6213-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u5?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u5%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.01.2~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.01.2~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.01.2~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2023-36664

risk_score 3.8

exploitability 0.5

weighted_severity 7.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bb6q-bj9y-6udr

url VCID-bus7-36yr-rudc

vulnerability_id VCID-bus7-36yr-rudc

summary A buffer overflow vulnerability in pj_common_print_page() in devices/gdevpjet.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16288.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16288.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16288

reference_id

reference_type

scores

value	0.01091
scoring_system	epss
scoring_elements	0.78284
published_at	2026-06-04T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.7831
published_at	2026-06-05T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78318
published_at	2026-06-06T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78308
published_at	2026-06-07T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78296
published_at	2026-06-08T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78314
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870266
reference_id	1870266
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870266

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16288

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bus7-36yr-rudc

url VCID-bw7z-qbkn-wbf2

vulnerability_id VCID-bw7z-qbkn-wbf2

summary The gx_ttfReader__Read function in base/gxttfb.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly have unspecified other impact via a crafted document.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9727.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9727.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-9727

reference_id

reference_type

scores

value	0.0129
scoring_system	epss
scoring_elements	0.80003
published_at	2026-06-04T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80038
published_at	2026-06-09T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80028
published_at	2026-06-07T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80018
published_at	2026-06-08T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80029
published_at	2026-06-05T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80034
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-9727

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11714
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9611
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9611

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9612
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9612

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9726
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9726

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9727
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9727

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9835
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9835

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:P

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1475833
reference_id	1475833
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1475833

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869913
reference_id	869913
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869913

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://usn.ubuntu.com/3403-1/
reference_id	USN-3403-1
reference_type
scores
url	https://usn.ubuntu.com/3403-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-9727

risk_score 2.0

exploitability 0.5

weighted_severity 4.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-bw7z-qbkn-wbf2

url VCID-c46c-c46t-qfds

vulnerability_id VCID-c46c-c46t-qfds

summary In Artifex Ghostscript before 10.05.0, decode_utf8 in base/gp_utf8.c mishandles overlong UTF-8 encoding. NOTE: this issue exists because of an incomplete fix for CVE-2024-46954.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-46646.json

reference_id

reference_type

scores

value	4.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-46646.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-46646

reference_id

reference_type

scores

value	0.00062
scoring_system	epss
scoring_elements	0.19511
published_at	2026-06-09T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19605
published_at	2026-06-05T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19599
published_at	2026-06-06T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19555
published_at	2026-06-07T12:55:00Z

value	0.00062
scoring_system	epss
scoring_elements	0.19487
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-46646

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2362446
reference_id	2362446
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2362446

reference_url	https://security.gentoo.org/glsa/202508-02
reference_id	GLSA-202508-02
reference_type
scores
url	https://security.gentoo.org/glsa/202508-02

reference_url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=f14ea81e6c3d2f51593f23cdf13c4679a18f1a3f

reference_id

?id=f14ea81e6c3d2f51593f23cdf13c4679a18f1a3f

reference_type

scores

value	4.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-29T13:44:40Z/

url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=f14ea81e6c3d2f51593f23cdf13c4679a18f1a3f

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=708311

reference_id

show_bug.cgi?id=708311

reference_type

scores

value	4.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-29T13:44:40Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=708311

reference_url	https://usn.ubuntu.com/7473-1/
reference_id	USN-7473-1
reference_type
scores
url	https://usn.ubuntu.com/7473-1/

fixed_packages

url	pkg:deb/debian/ghostscript@0?distro=trixie
purl	pkg:deb/debian/ghostscript@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@0%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.05.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.05.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2025-46646

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-c46c-c46t-qfds

url VCID-cb7n-yy69-dbek

vulnerability_id VCID-cb7n-yy69-dbek

summary sandbox escape

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14817.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14817.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-14817

reference_id

reference_type

scores

value	0.00362
scoring_system	epss
scoring_elements	0.58629
published_at	2026-06-04T12:55:00Z

value	0.00362
scoring_system	epss
scoring_elements	0.5866
published_at	2026-06-08T12:55:00Z

value	0.00362
scoring_system	epss
scoring_elements	0.58682
published_at	2026-06-06T12:55:00Z

value	0.00362
scoring_system	epss
scoring_elements	0.58675
published_at	2026-06-09T12:55:00Z

value	0.00362
scoring_system	epss
scoring_elements	0.58676
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-14817

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14811
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14811

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14812
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14812

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14813
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14813

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14817
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14817

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1744042
reference_id	1744042
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1744042

reference_url	https://security.archlinux.org/ASA-201911-5
reference_id	ASA-201911-5
reference_type
scores
url	https://security.archlinux.org/ASA-201911-5

reference_url

reference_id

AVG-1031

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2011-4517

reference_url	https://security.gentoo.org/glsa/202004-03
reference_id	GLSA-202004-03
reference_type
scores
url	https://security.gentoo.org/glsa/202004-03

reference_url	https://access.redhat.com/errata/RHSA-2019:2534
reference_id	RHSA-2019:2534
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2534

reference_url	https://access.redhat.com/errata/RHSA-2019:2586
reference_id	RHSA-2019:2586
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2586

reference_url	https://access.redhat.com/errata/RHSA-2019:2591
reference_id	RHSA-2019:2591
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2591

reference_url	https://usn.ubuntu.com/4111-1/
reference_id	USN-4111-1
reference_type
scores
url	https://usn.ubuntu.com/4111-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.28~~rc2~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.28~~rc2~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.28~~rc2~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2019-14817

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cb7n-yy69-dbek

url VCID-ccue-1cmm-g7cj

vulnerability_id VCID-ccue-1cmm-g7cj

summary multiple issues

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4517.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4517.json

reference_url

reference_id

reference_type

scores

value	0.4213
scoring_system	epss
scoring_elements	0.9752
published_at	2026-06-07T12:55:00Z

value	0.4213
scoring_system	epss
scoring_elements	0.97518
published_at	2026-06-05T12:55:00Z

value	0.4213
scoring_system	epss
scoring_elements	0.97521
published_at	2026-06-09T12:55:00Z

value	0.4213
scoring_system	epss
scoring_elements	0.97513
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-4517

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4517
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4517

reference_url

http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071458.html

reference_id

071458.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://lists.fedoraproject.org/pipermail/package-announce/2011-December/071458.html

reference_url

http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071561.html

reference_id

071561.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071561.html

reference_url

http://secunia.com/advisories/47193

reference_id

47193

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://secunia.com/advisories/47193

reference_url

http://secunia.com/advisories/47306

reference_id

47306

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://secunia.com/advisories/47306

reference_url

http://secunia.com/advisories/47353

reference_id

47353

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://secunia.com/advisories/47353

reference_url

http://www.securityfocus.com/bid/50992

reference_id

50992

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://www.securityfocus.com/bid/50992

reference_url

https://exchange.xforce.ibmcloud.com/vulnerabilities/71701

reference_id

71701

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

https://exchange.xforce.ibmcloud.com/vulnerabilities/71701

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=747726

reference_id

747726

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=747726

reference_url

http://osvdb.org/77596

reference_id

77596

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://osvdb.org/77596

reference_url

http://www.kb.cert.org/vuls/id/887409

reference_id

887409

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://www.kb.cert.org/vuls/id/887409

reference_url

reference_id

AVG-99

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html

reference_url

reference_id

cpujan2012-366304.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html

reference_url

http://www-01.ibm.com/support/docview.wss?uid=swg21660640

reference_id

docview.wss?uid=swg21660640

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://www-01.ibm.com/support/docview.wss?uid=swg21660640

reference_url

http://www.debian.org/security/2011/dsa-2371

reference_id

dsa-2371

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://www.debian.org/security/2011/dsa-2371

reference_url	https://security.gentoo.org/glsa/201201-10
reference_id	GLSA-201201-10
reference_type
scores
url	https://security.gentoo.org/glsa/201201-10

reference_url

http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00010.html

reference_id

msg00010.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://lists.opensuse.org/opensuse-security-announce/2011-12/msg00010.html

reference_url	https://access.redhat.com/errata/RHSA-2011:1807
reference_id	RHSA-2011:1807
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1807

reference_url

http://www.redhat.com/support/errata/RHSA-2011-1807.html

reference_id

RHSA-2011-1807.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://www.redhat.com/support/errata/RHSA-2011-1807.html

reference_url	https://access.redhat.com/errata/RHSA-2011:1811
reference_id	RHSA-2011:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1811

reference_url

http://www.redhat.com/support/errata/RHSA-2011-1811.html

reference_id

RHSA-2011-1811.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://www.redhat.com/support/errata/RHSA-2011-1811.html

reference_url	https://access.redhat.com/errata/RHSA-2015:0698
reference_id	RHSA-2015:0698
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0698

reference_url

http://rhn.redhat.com/errata/RHSA-2015-0698.html

reference_id

RHSA-2015-0698.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://rhn.redhat.com/errata/RHSA-2015-0698.html

reference_url	https://usn.ubuntu.com/1315-1/
reference_id	USN-1315-1
reference_type
scores
url	https://usn.ubuntu.com/1315-1/

reference_url

http://www.ubuntu.com/usn/USN-1315-1

reference_id

USN-1315-1

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://www.ubuntu.com/usn/USN-1315-1

reference_url	https://usn.ubuntu.com/1317-1/
reference_id	USN-1317-1
reference_type
scores
url	https://usn.ubuntu.com/1317-1/

reference_url

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.538606

reference_id

viewer.php?l=slackware-security&y=2015&m=slackware-security.538606

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-21T16:11:47Z/

url

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2015&m=slackware-security.538606

fixed_packages

url	pkg:deb/debian/ghostscript@8.64~dfsg-2?distro=trixie
purl	pkg:deb/debian/ghostscript@8.64~dfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.64~dfsg-2%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2011-4517

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ccue-1cmm-g7cj

url VCID-ccyq-jbda-rkhg

vulnerability_id VCID-ccyq-jbda-rkhg

summary In Artifex Ghostscript 9.23 before 2018-08-23, attackers are able to supply malicious PostScript files to bypass .tempfile restrictions and write files.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15908.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15908.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-15908

reference_id

reference_type

scores

value	0.00321
scoring_system	epss
scoring_elements	0.55452
published_at	2026-06-04T12:55:00Z

value	0.00321
scoring_system	epss
scoring_elements	0.55508
published_at	2026-06-05T12:55:00Z

value	0.00321
scoring_system	epss
scoring_elements	0.55482
published_at	2026-06-08T12:55:00Z

value	0.00321
scoring_system	epss
scoring_elements	0.55513
published_at	2026-06-06T12:55:00Z

value	0.00321
scoring_system	epss
scoring_elements	0.55501
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-15908

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1619756
reference_id	1619756
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1619756

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332
reference_id	907332
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://access.redhat.com/errata/RHSA-2018:3650
reference_id	RHSA-2018:3650
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3650

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-3?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-3%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-15908

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ccyq-jbda-rkhg

url VCID-cgjh-nkp4-y3a1

vulnerability_id VCID-cgjh-nkp4-y3a1

summary A null pointer dereference vulnerability in devices/gdevtsep.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted postscript file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16306.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16306.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16306

reference_id

reference_type

scores

value	0.01771
scoring_system	epss
scoring_elements	0.82996
published_at	2026-06-04T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.83023
published_at	2026-06-06T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.83022
published_at	2026-06-09T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.83019
published_at	2026-06-07T12:55:00Z

value	0.01771
scoring_system	epss
scoring_elements	0.83011
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870165
reference_id	1870165
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870165

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16306

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cgjh-nkp4-y3a1

url VCID-crea-dx3j-vyfc

vulnerability_id VCID-crea-dx3j-vyfc

summary icc.c in the International Color Consortium (ICC) Format library (aka icclib), as used in Ghostscript 8.64 and earlier and Argyll Color Management System (CMS) 1.0.3 and earlier, allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code by using a device file for processing a crafted image file associated with large integer values for certain sizes, related to an ICC profile in a (1) PostScript or (2) PDF file with embedded images.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0584.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0584.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-0584

reference_id

reference_type

scores

value	0.08952
scoring_system	epss
scoring_elements	0.92745
published_at	2026-06-04T12:55:00Z

value	0.08952
scoring_system	epss
scoring_elements	0.92757
published_at	2026-06-05T12:55:00Z

value	0.08952
scoring_system	epss
scoring_elements	0.92753
published_at	2026-06-06T12:55:00Z

value	0.08952
scoring_system	epss
scoring_elements	0.92748
published_at	2026-06-07T12:55:00Z

value	0.08952
scoring_system	epss
scoring_elements	0.92746
published_at	2026-06-08T12:55:00Z

value	0.08952
scoring_system	epss
scoring_elements	0.9276
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-0584

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0584
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0584

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=487744
reference_id	487744
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=487744

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=522416
reference_id	522416
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=522416

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=522448
reference_id	522448
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=522448

reference_url	https://security.gentoo.org/glsa/200903-37
reference_id	GLSA-200903-37
reference_type
scores
url	https://security.gentoo.org/glsa/200903-37

reference_url	https://access.redhat.com/errata/RHSA-2009:0345
reference_id	RHSA-2009:0345
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:0345

reference_url	https://usn.ubuntu.com/743-1/
reference_id	USN-743-1
reference_type
scores
url	https://usn.ubuntu.com/743-1/

reference_url	https://usn.ubuntu.com/757-1/
reference_id	USN-757-1
reference_type
scores
url	https://usn.ubuntu.com/757-1/

fixed_packages

url	pkg:deb/debian/ghostscript@8.64~dfsg-1.1?distro=trixie
purl	pkg:deb/debian/ghostscript@8.64~dfsg-1.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.64~dfsg-1.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2009-0584

risk_score 0.1

exploitability 0.5

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-crea-dx3j-vyfc

url VCID-ctvu-mktd-nkhx

vulnerability_id VCID-ctvu-mktd-nkhx

summary The gs_type2_interpret function in Ghostscript allows remote attackers to cause a denial of service (incorrect pointer dereference and application crash) via crafted font data in a compressed data stream, aka bug 691043.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4054.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4054.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-4054

reference_id

reference_type

scores

value	0.00762
scoring_system	epss
scoring_elements	0.73746
published_at	2026-06-08T12:55:00Z

value	0.00762
scoring_system	epss
scoring_elements	0.73774
published_at	2026-06-09T12:55:00Z

value	0.01874
scoring_system	epss
scoring_elements	0.83469
published_at	2026-06-04T12:55:00Z

value	0.01874
scoring_system	epss
scoring_elements	0.83494
published_at	2026-06-05T12:55:00Z

value	0.01874
scoring_system	epss
scoring_elements	0.83496
published_at	2026-06-06T12:55:00Z

value	0.01874
scoring_system	epss
scoring_elements	0.83492
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-4054

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4054
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4054

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=646086
reference_id	646086
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=646086

reference_url	https://security.gentoo.org/glsa/201412-17
reference_id	GLSA-201412-17
reference_type
scores
url	https://security.gentoo.org/glsa/201412-17

reference_url	https://access.redhat.com/errata/RHSA-2012:0095
reference_id	RHSA-2012:0095
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0095

reference_url	https://access.redhat.com/errata/RHSA-2012:0096
reference_id	RHSA-2012:0096
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0096

reference_url	https://usn.ubuntu.com/1317-1/
reference_id	USN-1317-1
reference_type
scores
url	https://usn.ubuntu.com/1317-1/

fixed_packages

url	pkg:deb/debian/ghostscript@8.71~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@8.71~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.71~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2010-4054

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ctvu-mktd-nkhx

url VCID-cvma-u7ek-eyeb

vulnerability_id VCID-cvma-u7ek-eyeb

summary A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to render a large number of bits in memory. When allocating a buffer device, it relies on an init_device_procs defined for the device that uses it as a prototype that depends upon the number of bits per pixel. For bpp > 64, mem_x_device is used and does not have an init_device_procs defined. This flaw allows an attacker to parse a large number of bits (more than 64 bits per pixel), which triggers a NULL pointer dereference flaw, causing an application to crash.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2085.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-2085.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-2085

reference_id

reference_type

scores

value	0.00193
scoring_system	epss
scoring_elements	0.41096
published_at	2026-06-04T12:55:00Z

value	0.00193
scoring_system	epss
scoring_elements	0.41171
published_at	2026-06-05T12:55:00Z

value	0.00193
scoring_system	epss
scoring_elements	0.41175
published_at	2026-06-06T12:55:00Z

value	0.00193
scoring_system	epss
scoring_elements	0.41144
published_at	2026-06-07T12:55:00Z

value	0.00193
scoring_system	epss
scoring_elements	0.41113
published_at	2026-06-08T12:55:00Z

value	0.00193
scoring_system	epss
scoring_elements	0.41123
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-2085

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2095261
reference_id	2095261
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2095261

reference_url	https://security.gentoo.org/glsa/202211-11
reference_id	GLSA-202211-11
reference_type
scores
url	https://security.gentoo.org/glsa/202211-11

reference_url	https://security.gentoo.org/glsa/202309-03
reference_id	GLSA-202309-03
reference_type
scores
url	https://security.gentoo.org/glsa/202309-03

reference_url	https://usn.ubuntu.com/5643-1/
reference_id	USN-5643-1
reference_type
scores
url	https://usn.ubuntu.com/5643-1/

fixed_packages

url	pkg:deb/debian/ghostscript@0?distro=trixie
purl	pkg:deb/debian/ghostscript@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@0%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@9.56.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.56.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.56.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2022-2085

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-cvma-u7ek-eyeb

url VCID-d9d9-wbha-jbg8

vulnerability_id VCID-d9d9-wbha-jbg8

summary Multiple use-after-free vulnerabilities in the gx_image_enum_begin function in base/gxipixel.c in Ghostscript before ecceafe3abba2714ef9b432035fe0739d9b1a283 allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PostScript document.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6196.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-6196.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-6196

reference_id

reference_type

scores

value	0.00351
scoring_system	epss
scoring_elements	0.57764
published_at	2026-06-04T12:55:00Z

value	0.00351
scoring_system	epss
scoring_elements	0.57816
published_at	2026-06-09T12:55:00Z

value	0.00351
scoring_system	epss
scoring_elements	0.57799
published_at	2026-06-08T12:55:00Z

value	0.00351
scoring_system	epss
scoring_elements	0.57824
published_at	2026-06-06T12:55:00Z

value	0.00351
scoring_system	epss
scoring_elements	0.57813
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-6196

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1427440
reference_id	1427440
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1427440

reference_url	https://security.gentoo.org/glsa/201708-06
reference_id	GLSA-201708-06
reference_type
scores
url	https://security.gentoo.org/glsa/201708-06

fixed_packages

url	pkg:deb/debian/ghostscript@0?distro=trixie
purl	pkg:deb/debian/ghostscript@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@0%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-6196

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d9d9-wbha-jbg8

url VCID-dbea-dz1e-nkfd

vulnerability_id VCID-dbea-dz1e-nkfd

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0583.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-0583.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-0583

reference_id

reference_type

scores

value	0.04568
scoring_system	epss
scoring_elements	0.89391
published_at	2026-06-04T12:55:00Z

value	0.04568
scoring_system	epss
scoring_elements	0.89409
published_at	2026-06-06T12:55:00Z

value	0.04568
scoring_system	epss
scoring_elements	0.89408
published_at	2026-06-07T12:55:00Z

value	0.04568
scoring_system	epss
scoring_elements	0.8941
published_at	2026-06-08T12:55:00Z

value	0.04568
scoring_system	epss
scoring_elements	0.89426
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-0583

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0583
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0583

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=487742
reference_id	487742
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=487742

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=522416
reference_id	522416
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=522416

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=522448
reference_id	522448
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=522448

reference_url	https://security.gentoo.org/glsa/200903-37
reference_id	GLSA-200903-37
reference_type
scores
url	https://security.gentoo.org/glsa/200903-37

reference_url	https://access.redhat.com/errata/RHSA-2009:0345
reference_id	RHSA-2009:0345
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:0345

reference_url	https://usn.ubuntu.com/743-1/
reference_id	USN-743-1
reference_type
scores
url	https://usn.ubuntu.com/743-1/

reference_url	https://usn.ubuntu.com/757-1/
reference_id	USN-757-1
reference_type
scores
url	https://usn.ubuntu.com/757-1/

fixed_packages

url	pkg:deb/debian/ghostscript@8.64~dfsg-1.1?distro=trixie
purl	pkg:deb/debian/ghostscript@8.64~dfsg-1.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.64~dfsg-1.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2009-0583

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dbea-dz1e-nkfd

url VCID-dh95-nzjg-qba5

vulnerability_id VCID-dh95-nzjg-qba5

summary multiple issues

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3520.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3520.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-3520

reference_id

reference_type

scores

value	0.02615
scoring_system	epss
scoring_elements	0.85955
published_at	2026-06-09T12:55:00Z

value	0.02615
scoring_system	epss
scoring_elements	0.85954
published_at	2026-06-07T12:55:00Z

value	0.02615
scoring_system	epss
scoring_elements	0.85942
published_at	2026-06-08T12:55:00Z

value	0.02999
scoring_system	epss
scoring_elements	0.86837
published_at	2026-06-06T12:55:00Z

value	0.02999
scoring_system	epss
scoring_elements	0.86817
published_at	2026-06-04T12:55:00Z

value	0.02999
scoring_system	epss
scoring_elements	0.8684
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-3520

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3520
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3520

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=461476
reference_id	461476
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=461476

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559778
reference_id	559778
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559778

reference_url

reference_id

AVG-99

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27833.json

reference_url	https://security.gentoo.org/glsa/200812-18
reference_id	GLSA-200812-18
reference_type
scores
url	https://security.gentoo.org/glsa/200812-18

reference_url	https://access.redhat.com/errata/RHSA-2009:0012
reference_id	RHSA-2009:0012
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:0012

reference_url	https://access.redhat.com/errata/RHSA-2015:0698
reference_id	RHSA-2015:0698
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0698

reference_url	https://usn.ubuntu.com/1317-1/
reference_id	USN-1317-1
reference_type
scores
url	https://usn.ubuntu.com/1317-1/

reference_url	https://usn.ubuntu.com/742-1/
reference_id	USN-742-1
reference_type
scores
url	https://usn.ubuntu.com/742-1/

fixed_packages

url	pkg:deb/debian/ghostscript@8.64~dfsg-2?distro=trixie
purl	pkg:deb/debian/ghostscript@8.64~dfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.64~dfsg-2%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2008-3520

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dh95-nzjg-qba5

url VCID-djjg-e546-f7cp

vulnerability_id VCID-djjg-e546-f7cp

summary An issue was discovered in Artifex Ghostscript before 10.05.0. A buffer overflow occurs for a long TTF font name to pdf/pdf_fmap.c.

references

reference_url

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27833.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-27833

reference_id

reference_type

scores

value	0.00061
scoring_system	epss
scoring_elements	0.19086
published_at	2026-06-09T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19179
published_at	2026-06-06T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19138
published_at	2026-06-07T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19065
published_at	2026-06-08T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19182
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-27833

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2354954
reference_id	2354954
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2354954

reference_url	https://security.gentoo.org/glsa/202508-02
reference_id	GLSA-202508-02
reference_type
scores
url	https://security.gentoo.org/glsa/202508-02

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=708259

reference_id

show_bug.cgi?id=708259

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-26T13:36:49Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=708259

reference_url	https://usn.ubuntu.com/7378-1/
reference_id	USN-7378-1
reference_type
scores
url	https://usn.ubuntu.com/7378-1/

fixed_packages

url	pkg:deb/debian/ghostscript@0?distro=trixie
purl	pkg:deb/debian/ghostscript@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@0%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u7?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.05.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.05.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2025-27833

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-djjg-e546-f7cp

url VCID-dmam-m97n-8bdh

vulnerability_id VCID-dmam-m97n-8bdh

summary In Artifex Ghostscript before 9.24, gssetresolution and gsgetresolution allow attackers to have an unspecified impact.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16543.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16543.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16543

reference_id

reference_type

scores

value	0.00219
scoring_system	epss
scoring_elements	0.44558
published_at	2026-06-04T12:55:00Z

value	0.00219
scoring_system	epss
scoring_elements	0.44627
published_at	2026-06-05T12:55:00Z

value	0.00219
scoring_system	epss
scoring_elements	0.44635
published_at	2026-06-06T12:55:00Z

value	0.00219
scoring_system	epss
scoring_elements	0.44612
published_at	2026-06-07T12:55:00Z

value	0.00219
scoring_system	epss
scoring_elements	0.44581
published_at	2026-06-08T12:55:00Z

value	0.00219
scoring_system	epss
scoring_elements	0.44594
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16543

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1625851
reference_id	1625851
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1625851

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908303
reference_id	908303
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908303

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

fixed_packages

url	pkg:deb/debian/ghostscript@9.25~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.25~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.25~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-16543

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dmam-m97n-8bdh

url VCID-dnp1-ak72-6bfw

vulnerability_id VCID-dnp1-ak72-6bfw

summary Buffer Overflow vulnerability in clj_media_size function in devices/gdevclj.c in Artifex Ghostscript 9.50 allows remote attackers to cause a denial of service or other unspecified impact(s) via opening of crafted PDF document.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-21890.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-21890.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-21890

reference_id

reference_type

scores

value	0.01228
scoring_system	epss
scoring_elements	0.79486
published_at	2026-06-04T12:55:00Z

value	0.01228
scoring_system	epss
scoring_elements	0.79501
published_at	2026-06-08T12:55:00Z

value	0.01228
scoring_system	epss
scoring_elements	0.79519
published_at	2026-06-09T12:55:00Z

value	0.01228
scoring_system	epss
scoring_elements	0.79511
published_at	2026-06-07T12:55:00Z

value	0.01228
scoring_system	epss
scoring_elements	0.79513
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-21890

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-21890
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-21890

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2235002
reference_id	2235002
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2235002

reference_url

https://lists.debian.org/debian-lts-announce/2023/09/msg00029.html

reference_id

msg00029.html

reference_type

scores

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-10-04T16:13:44Z/

url

https://lists.debian.org/debian-lts-announce/2023/09/msg00029.html

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=701846

reference_id

show_bug.cgi?id=701846

reference_type

scores

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2024-10-04T16:13:44Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=701846

reference_url	https://usn.ubuntu.com/6364-1/
reference_id	USN-6364-1
reference_type
scores
url	https://usn.ubuntu.com/6364-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-21890

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dnp1-ak72-6bfw

url VCID-dnza-dff2-tye9

vulnerability_id VCID-dnza-dff2-tye9

summary A buffer overflow vulnerability in jetp3852_print_page() in devices/gdev3852.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16290.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16290.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16290

reference_id

reference_type

scores

value	0.0067
scoring_system	epss
scoring_elements	0.71742
published_at	2026-06-04T12:55:00Z

value	0.0067
scoring_system	epss
scoring_elements	0.71782
published_at	2026-06-05T12:55:00Z

value	0.0067
scoring_system	epss
scoring_elements	0.71788
published_at	2026-06-06T12:55:00Z

value	0.0067
scoring_system	epss
scoring_elements	0.71765
published_at	2026-06-07T12:55:00Z

value	0.0067
scoring_system	epss
scoring_elements	0.7175
published_at	2026-06-08T12:55:00Z

value	0.0067
scoring_system	epss
scoring_elements	0.71773
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870149
reference_id	1870149
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870149

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16290

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dnza-dff2-tye9

url VCID-drgb-ubjm-s7ep

vulnerability_id VCID-drgb-ubjm-s7ep

summary A buffer overflow vulnerability in mj_color_correct() in contrib/japanese/gdevmjc.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16298.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16298.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16298

reference_id

reference_type

scores

value	0.01421
scoring_system	epss
scoring_elements	0.80935
published_at	2026-06-04T12:55:00Z

value	0.01421
scoring_system	epss
scoring_elements	0.80964
published_at	2026-06-05T12:55:00Z

value	0.01421
scoring_system	epss
scoring_elements	0.80966
published_at	2026-06-06T12:55:00Z

value	0.01421
scoring_system	epss
scoring_elements	0.80963
published_at	2026-06-07T12:55:00Z

value	0.01421
scoring_system	epss
scoring_elements	0.8096
published_at	2026-06-08T12:55:00Z

value	0.01421
scoring_system	epss
scoring_elements	0.80979
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870152
reference_id	1870152
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870152

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16298

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-drgb-ubjm-s7ep

url VCID-dtjy-41xb-fbfr

vulnerability_id VCID-dtjy-41xb-fbfr

summary Buffer overflow in gs/psi/iscan.c in Ghostscript 8.64 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted PDF document containing a long name.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4897.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-4897.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-4897

reference_id

reference_type

scores

value	0.08294
scoring_system	epss
scoring_elements	0.92398
published_at	2026-06-04T12:55:00Z

value	0.08294
scoring_system	epss
scoring_elements	0.92411
published_at	2026-06-05T12:55:00Z

value	0.08294
scoring_system	epss
scoring_elements	0.92407
published_at	2026-06-06T12:55:00Z

value	0.08294
scoring_system	epss
scoring_elements	0.92402
published_at	2026-06-07T12:55:00Z

value	0.08294
scoring_system	epss
scoring_elements	0.92401
published_at	2026-06-08T12:55:00Z

value	0.08294
scoring_system	epss
scoring_elements	0.92419
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-4897

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4897
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4897

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=613792
reference_id	613792
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=613792

reference_url	https://security.gentoo.org/glsa/201412-17
reference_id	GLSA-201412-17
reference_type
scores
url	https://security.gentoo.org/glsa/201412-17

reference_url	https://usn.ubuntu.com/961-1/
reference_id	USN-961-1
reference_type
scores
url	https://usn.ubuntu.com/961-1/

fixed_packages

url	pkg:deb/debian/ghostscript@8.70~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@8.70~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.70~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2009-4897

risk_score 0.1

exploitability 0.5

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-dtjy-41xb-fbfr

url VCID-e14h-hfk6-wbhg

vulnerability_id VCID-e14h-hfk6-wbhg

summary A buffer overflow vulnerability in p_print_image() in devices/gdevcdj.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16308.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16308.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16308

reference_id

reference_type

scores

value	0.01091
scoring_system	epss
scoring_elements	0.78284
published_at	2026-06-04T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.7831
published_at	2026-06-05T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78318
published_at	2026-06-06T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78308
published_at	2026-06-07T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78296
published_at	2026-06-08T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78314
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870256
reference_id	1870256
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870256

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16308

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-e14h-hfk6-wbhg

url VCID-ekr1-296q-gfek

vulnerability_id VCID-ekr1-296q-gfek

summary Ghostscript 8.71 and earlier reads initialization files from the current working directory, which allows local users to execute arbitrary PostScript commands via a Trojan horse file, related to improper support for the -P- option to the gs program, as demonstrated using gs_init.ps, a different vulnerability than CVE-2010-4820.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2055.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-2055.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-2055

reference_id

reference_type

scores

value	0.00064
scoring_system	epss
scoring_elements	0.20194
published_at	2026-06-04T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.2027
published_at	2026-06-05T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20262
published_at	2026-06-06T12:55:00Z

value	0.00064
scoring_system	epss
scoring_elements	0.20224
published_at	2026-06-07T12:55:00Z

value	0.00078
scoring_system	epss
scoring_elements	0.23305
published_at	2026-06-08T12:55:00Z

value	0.00078
scoring_system	epss
scoring_elements	0.2331
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-2055

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2055
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2055

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584653
reference_id	584653
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=584653

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=599564
reference_id	599564
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=599564

reference_url	https://security.gentoo.org/glsa/201412-17
reference_id	GLSA-201412-17
reference_type
scores
url	https://security.gentoo.org/glsa/201412-17

reference_url	https://access.redhat.com/errata/RHSA-2012:0095
reference_id	RHSA-2012:0095
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0095

fixed_packages

url	pkg:deb/debian/ghostscript@8.71~dfsg2-6.1?distro=trixie
purl	pkg:deb/debian/ghostscript@8.71~dfsg2-6.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.71~dfsg2-6.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2010-2055

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ekr1-296q-gfek

url VCID-eu1z-5a2q-ybh3

vulnerability_id VCID-eu1z-5a2q-ybh3

summary A memory corruption issue was found in Artifex Ghostscript 9.50 and 9.52. Use of a non-standard PostScript operator can allow overriding of file access controls. The 'rsearch' calculation for the 'post' size resulted in a size that was too large, and could underflow to max uint32_t. This was fixed in commit 5d499272b95a6b890a1397e11d20937de000d31b.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15900.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-15900.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-15900

reference_id

reference_type

scores

value	0.217
scoring_system	epss
scoring_elements	0.95844
published_at	2026-06-04T12:55:00Z

value	0.217
scoring_system	epss
scoring_elements	0.95848
published_at	2026-06-05T12:55:00Z

value	0.217
scoring_system	epss
scoring_elements	0.95851
published_at	2026-06-08T12:55:00Z

value	0.217
scoring_system	epss
scoring_elements	0.95855
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-15900

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15900
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-15900

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1859492
reference_id	1859492
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1859492

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://usn.ubuntu.com/4445-1/
reference_id	USN-4445-1
reference_type
scores
url	https://usn.ubuntu.com/4445-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.52.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.52.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.52.1~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-15900

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-eu1z-5a2q-ybh3

url VCID-fjuq-7qnu-myag

vulnerability_id VCID-fjuq-7qnu-myag

summary Off-by-one error in the Ins_MINDEX function in the TrueType bytecode interpreter in Ghostscript before 8.71 allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption) via a malformed TrueType font in a document that trigger an integer overflow and a heap-based buffer overflow.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3743.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3743.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-3743

reference_id

reference_type

scores

value	0.03936
scoring_system	epss
scoring_elements	0.88542
published_at	2026-06-04T12:55:00Z

value	0.03936
scoring_system	epss
scoring_elements	0.8856
published_at	2026-06-05T12:55:00Z

value	0.03936
scoring_system	epss
scoring_elements	0.88562
published_at	2026-06-06T12:55:00Z

value	0.03936
scoring_system	epss
scoring_elements	0.88561
published_at	2026-06-07T12:55:00Z

value	0.04459
scoring_system	epss
scoring_elements	0.89285
published_at	2026-06-08T12:55:00Z

value	0.04459
scoring_system	epss
scoring_elements	0.89301
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-3743

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3743
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3743

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=627902
reference_id	627902
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=627902

reference_url	https://security.gentoo.org/glsa/201412-17
reference_id	GLSA-201412-17
reference_type
scores
url	https://security.gentoo.org/glsa/201412-17

reference_url	https://access.redhat.com/errata/RHSA-2012:0095
reference_id	RHSA-2012:0095
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0095

reference_url	https://usn.ubuntu.com/1317-1/
reference_id	USN-1317-1
reference_type
scores
url	https://usn.ubuntu.com/1317-1/

fixed_packages

url	pkg:deb/debian/ghostscript@8.71~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@8.71~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.71~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2009-3743

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fjuq-7qnu-myag

url VCID-fk2c-nze6-q3h9

vulnerability_id VCID-fk2c-nze6-q3h9

summary An issue was discovered in Artifex Ghostscript before 10.05.0. A buffer overflow occurs when converting glyphs to Unicode in psi/zbfont.c.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27835.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27835.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-27835

reference_id

reference_type

scores

value	0.00061
scoring_system	epss
scoring_elements	0.19086
published_at	2026-06-09T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19179
published_at	2026-06-06T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19138
published_at	2026-06-07T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19065
published_at	2026-06-08T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19182
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-27835

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27835
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27835

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2354947
reference_id	2354947
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2354947

reference_url	https://security.gentoo.org/glsa/202508-02
reference_id	GLSA-202508-02
reference_type
scores
url	https://security.gentoo.org/glsa/202508-02

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=708131

reference_id

show_bug.cgi?id=708131

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-26T13:36:46Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=708131

reference_url	https://usn.ubuntu.com/7378-1/
reference_id	USN-7378-1
reference_type
scores
url	https://usn.ubuntu.com/7378-1/

reference_url	https://usn.ubuntu.com/7623-1/
reference_id	USN-7623-1
reference_type
scores
url	https://usn.ubuntu.com/7623-1/

fixed_packages

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u10?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u10?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u10%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u7?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.05.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.05.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2025-27835

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fk2c-nze6-q3h9

url VCID-fk55-hjc7-s3g4

vulnerability_id VCID-fk55-hjc7-s3g4

summary An issue was discovered in Artifex Ghostscript before 10.03.1. psi/zmisc1.c, when SAFER mode is used, allows eexec seeds other than the Type 1 standard.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52722.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-52722.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-52722

reference_id

reference_type

scores

value	0.00057
scoring_system	epss
scoring_elements	0.18098
published_at	2026-06-09T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.1819
published_at	2026-06-05T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.18191
published_at	2026-06-06T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.18153
published_at	2026-06-07T12:55:00Z

value	0.00057
scoring_system	epss
scoring_elements	0.18079
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-52722

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52722
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52722

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29510
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29510

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33869
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33869

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33870
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33870

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33871
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33871

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

http://www.openwall.com/lists/oss-security/2024/06/28/2

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-29T19:14:51Z/

url

http://www.openwall.com/lists/oss-security/2024/06/28/2

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2278775
reference_id	2278775
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2278775

reference_url	https://security.gentoo.org/glsa/202409-03
reference_id	GLSA-202409-03
reference_type
scores
url	https://security.gentoo.org/glsa/202409-03

reference_url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=afd7188f74918cb51b5fb89f52b54eb16e8acfd1

reference_id

?id=afd7188f74918cb51b5fb89f52b54eb16e8acfd1

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-29T19:14:51Z/

url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=afd7188f74918cb51b5fb89f52b54eb16e8acfd1

reference_url	https://usn.ubuntu.com/6835-1/
reference_id	USN-6835-1
reference_type
scores
url	https://usn.ubuntu.com/6835-1/

fixed_packages

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u4?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.02.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.02.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.02.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2023-52722

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fk55-hjc7-s3g4

url VCID-fm5x-b72k-bffs

vulnerability_id VCID-fm5x-b72k-bffs

summary It was found that RHSA-2018:2918 did not fully fix CVE-2018-16509. An attacker could possibly exploit another variant of the flaw and bypass the -dSAFER protection to, for example, execute arbitrary shell commands via a specially crafted PostScript document. This only affects ghostscript 9.07 as shipped with Red Hat Enterprise Linux 7.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16863.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16863.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16863

reference_id

reference_type

scores

value	0.00083
scoring_system	epss
scoring_elements	0.24345
published_at	2026-06-04T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24446
published_at	2026-06-05T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24428
published_at	2026-06-06T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24373
published_at	2026-06-07T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24314
published_at	2026-06-08T12:55:00Z

value	0.00083
scoring_system	epss
scoring_elements	0.24325
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16863

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1652893
reference_id	1652893
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1652893

reference_url	https://access.redhat.com/errata/RHSA-2018:3761
reference_id	RHSA-2018:3761
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3761

fixed_packages

url	pkg:deb/debian/ghostscript@0?distro=trixie
purl	pkg:deb/debian/ghostscript@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@0%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-16863

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fm5x-b72k-bffs

url VCID-fnhb-27a7-qbaa

vulnerability_id VCID-fnhb-27a7-qbaa

summary The getenv and filenameforall functions in Ghostscript 9.10 ignore the "-dSAFER" argument, which allows remote attackers to read data via a crafted postscript file.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-5653.json

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-5653.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2013-5653

reference_id

reference_type

scores

value	0.00222
scoring_system	epss
scoring_elements	0.44847
published_at	2026-06-09T12:55:00Z

value	0.00222
scoring_system	epss
scoring_elements	0.44865
published_at	2026-06-07T12:55:00Z

value	0.00222
scoring_system	epss
scoring_elements	0.44836
published_at	2026-06-08T12:55:00Z

value	0.00222
scoring_system	epss
scoring_elements	0.44879
published_at	2026-06-05T12:55:00Z

value	0.00222
scoring_system	epss
scoring_elements	0.44886
published_at	2026-06-06T12:55:00Z

value	0.00223
scoring_system	epss
scoring_elements	0.4495
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2013-5653

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5653
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5653

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7976
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7976

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7977
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7977

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7978
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7978

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7979
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7979

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8602

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:P/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1380327
reference_id	1380327
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1380327

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=839118
reference_id	839118
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=839118

reference_url	https://access.redhat.com/errata/RHSA-2017:0013
reference_id	RHSA-2017:0013
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:0013

reference_url	https://access.redhat.com/errata/RHSA-2017:0014
reference_id	RHSA-2017:0014
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:0014

reference_url	https://usn.ubuntu.com/3148-1/
reference_id	USN-3148-1
reference_type
scores
url	https://usn.ubuntu.com/3148-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.19~dfsg-3.1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.19~dfsg-3.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.19~dfsg-3.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2013-5653

risk_score 1.8

exploitability 0.5

weighted_severity 3.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fnhb-27a7-qbaa

url VCID-ft5k-ed8p-zfbs

vulnerability_id VCID-ft5k-ed8p-zfbs

summary Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-29510.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-29510.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-29510

reference_id

reference_type

scores

value	0.08233
scoring_system	epss
scoring_elements	0.92388
published_at	2026-06-09T12:55:00Z

value	0.08233
scoring_system	epss
scoring_elements	0.92379
published_at	2026-06-05T12:55:00Z

value	0.08233
scoring_system	epss
scoring_elements	0.92375
published_at	2026-06-06T12:55:00Z

value	0.08233
scoring_system	epss
scoring_elements	0.92371
published_at	2026-06-07T12:55:00Z

value	0.08233
scoring_system	epss
scoring_elements	0.9237
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-29510

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52722
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52722

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29510
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29510

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33869
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33869

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33870
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33870

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33871
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33871

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2293950
reference_id	2293950
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2293950

reference_url

https://www.openwall.com/lists/oss-security/2024/07/03/7

reference_id

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-08T13:49:45Z/

url

https://www.openwall.com/lists/oss-security/2024/07/03/7

reference_url

https://codeanlabs.com/blog/research/cve-2024-29510-ghostscript-format-string-exploitation/

reference_id

cve-2024-29510-ghostscript-format-string-exploitation

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-08T13:49:45Z/

url

https://codeanlabs.com/blog/research/cve-2024-29510-ghostscript-format-string-exploitation/

reference_url	https://security.gentoo.org/glsa/202409-03
reference_id	GLSA-202409-03
reference_type
scores
url	https://security.gentoo.org/glsa/202409-03

reference_url	https://access.redhat.com/errata/RHSA-2024:6197
reference_id	RHSA-2024:6197
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6197

reference_url	https://access.redhat.com/errata/RHSA-2024:6466
reference_id	RHSA-2024:6466
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6466

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=707662

reference_id

show_bug.cgi?id=707662

reference_type

scores

value	6.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-08T13:49:45Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=707662

reference_url	https://usn.ubuntu.com/6835-1/
reference_id	USN-6835-1
reference_type
scores
url	https://usn.ubuntu.com/6835-1/

fixed_packages

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u4?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.03.1~dfsg~git20240518-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.03.1~dfsg~git20240518-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.03.1~dfsg~git20240518-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2024-29510

risk_score 10.0

exploitability 2.0

weighted_severity 5.7

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ft5k-ed8p-zfbs

url VCID-g9ew-u3bv-xyhz

vulnerability_id VCID-g9ew-u3bv-xyhz

summary The PS Interpreter in Ghostscript 9.18 and 9.20 allows remote attackers to execute arbitrary code via crafted userparams.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7976.json

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7976.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-7976

reference_id

reference_type

scores

value	0.46832
scoring_system	epss
scoring_elements	0.97729
published_at	2026-06-04T12:55:00Z

value	0.46832
scoring_system	epss
scoring_elements	0.97732
published_at	2026-06-05T12:55:00Z

value	0.46832
scoring_system	epss
scoring_elements	0.97733
published_at	2026-06-07T12:55:00Z

value	0.46832
scoring_system	epss
scoring_elements	0.97734
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-7976

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5653
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5653

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7976
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7976

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7977
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7977

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7978
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7978

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7979
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7979

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8602

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:C/I:C/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1382294
reference_id	1382294
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1382294

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=839260
reference_id	839260
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=839260

reference_url	https://security.gentoo.org/glsa/201702-31
reference_id	GLSA-201702-31
reference_type
scores
url	https://security.gentoo.org/glsa/201702-31

reference_url	https://usn.ubuntu.com/3148-1/
reference_id	USN-3148-1
reference_type
scores
url	https://usn.ubuntu.com/3148-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.19~dfsg-3.1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.19~dfsg-3.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.19~dfsg-3.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2016-7976

risk_score 10.0

exploitability 2.0

weighted_severity 6.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-g9ew-u3bv-xyhz

url VCID-gha3-f1ca-fydf

vulnerability_id VCID-gha3-f1ca-fydf

summary In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the LockDistillerParams parameter to crash the interpreter or execute code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15910.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-15910.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-15910

reference_id

reference_type

scores

value	0.0405
scoring_system	epss
scoring_elements	0.88719
published_at	2026-06-04T12:55:00Z

value	0.0405
scoring_system	epss
scoring_elements	0.88737
published_at	2026-06-05T12:55:00Z

value	0.0405
scoring_system	epss
scoring_elements	0.88753
published_at	2026-06-09T12:55:00Z

value	0.0405
scoring_system	epss
scoring_elements	0.88738
published_at	2026-06-06T12:55:00Z

value	0.0405
scoring_system	epss
scoring_elements	0.88736
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-15910

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1619751
reference_id	1619751
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1619751

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332
reference_id	907332
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://access.redhat.com/errata/RHSA-2018:2918
reference_id	RHSA-2018:2918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:2918

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-3?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-3%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-15910

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gha3-f1ca-fydf

url VCID-gjeh-2dqw-6qcg

vulnerability_id VCID-gjeh-2dqw-6qcg

summary sandbox escape

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14811.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14811.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-14811

reference_id

reference_type

scores

value	0.00697
scoring_system	epss
scoring_elements	0.7233
published_at	2026-06-04T12:55:00Z

value	0.00697
scoring_system	epss
scoring_elements	0.72368
published_at	2026-06-09T12:55:00Z

value	0.00697
scoring_system	epss
scoring_elements	0.72357
published_at	2026-06-07T12:55:00Z

value	0.00697
scoring_system	epss
scoring_elements	0.72343
published_at	2026-06-08T12:55:00Z

value	0.00697
scoring_system	epss
scoring_elements	0.72371
published_at	2026-06-05T12:55:00Z

value	0.00697
scoring_system	epss
scoring_elements	0.72377
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-14811

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14811
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14811

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14812
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14812

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14813
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14813

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14817
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14817

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1743757
reference_id	1743757
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1743757

reference_url	https://security.archlinux.org/ASA-201911-5
reference_id	ASA-201911-5
reference_type
scores
url	https://security.archlinux.org/ASA-201911-5

reference_url

reference_id

AVG-1031

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18073.json

reference_url	https://security.gentoo.org/glsa/202004-03
reference_id	GLSA-202004-03
reference_type
scores
url	https://security.gentoo.org/glsa/202004-03

reference_url	https://access.redhat.com/errata/RHSA-2019:2534
reference_id	RHSA-2019:2534
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2534

reference_url	https://access.redhat.com/errata/RHSA-2019:2586
reference_id	RHSA-2019:2586
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2586

reference_url	https://access.redhat.com/errata/RHSA-2019:2591
reference_id	RHSA-2019:2591
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2591

reference_url	https://usn.ubuntu.com/4111-1/
reference_id	USN-4111-1
reference_type
scores
url	https://usn.ubuntu.com/4111-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.28~~rc2~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.28~~rc2~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.28~~rc2~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2019-14811

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gjeh-2dqw-6qcg

url VCID-h17c-85mb-vyfa

vulnerability_id VCID-h17c-85mb-vyfa

summary sandbox escape

references

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-18073.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-18073

reference_id

reference_type

scores

value	0.00363
scoring_system	epss
scoring_elements	0.58638
published_at	2026-06-04T12:55:00Z

value	0.00363
scoring_system	epss
scoring_elements	0.58669
published_at	2026-06-08T12:55:00Z

value	0.00363
scoring_system	epss
scoring_elements	0.58691
published_at	2026-06-06T12:55:00Z

value	0.00363
scoring_system	epss
scoring_elements	0.58684
published_at	2026-06-09T12:55:00Z

value	0.00363
scoring_system	epss
scoring_elements	0.58685
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-18073

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11645
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11645

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17961
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17961

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18073
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18073

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18284
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18284

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1642584
reference_id	1642584
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1642584

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=910758
reference_id	910758
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=910758

reference_url	https://security.archlinux.org/ASA-201811-3
reference_id	ASA-201811-3
reference_type
scores
url	https://security.archlinux.org/ASA-201811-3

reference_url

reference_id

AVG-786

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5951.json

reference_url	https://access.redhat.com/errata/RHSA-2018:3834
reference_id	RHSA-2018:3834
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3834

reference_url	https://usn.ubuntu.com/3803-1/
reference_id	USN-3803-1
reference_type
scores
url	https://usn.ubuntu.com/3803-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.25~dfsg-3?distro=trixie
purl	pkg:deb/debian/ghostscript@9.25~dfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.25~dfsg-3%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-18073

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h17c-85mb-vyfa

url VCID-h6q3-ghmc-x3dy

vulnerability_id VCID-h6q3-ghmc-x3dy

summary The mem_get_bits_rectangle function in base/gdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file.

references

reference_url

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-5951.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-5951

reference_id

reference_type

scores

value	0.00355
scoring_system	epss
scoring_elements	0.58074
published_at	2026-06-04T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.58124
published_at	2026-06-09T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.58121
published_at	2026-06-07T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.58107
published_at	2026-06-08T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.58125
published_at	2026-06-05T12:55:00Z

value	0.00355
scoring_system	epss
scoring_elements	0.58133
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-5951

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10219
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10219

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10220
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10220

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5951
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5951

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7207
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7207

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8291

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	1.9
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:N/I:N/A:P

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1441572
reference_id	1441572
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1441572

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859696
reference_id	859696
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859696

reference_url	https://security.gentoo.org/glsa/201708-06
reference_id	GLSA-201708-06
reference_type
scores
url	https://security.gentoo.org/glsa/201708-06

reference_url	https://usn.ubuntu.com/3272-1/
reference_id	USN-3272-1
reference_type
scores
url	https://usn.ubuntu.com/3272-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.20~dfsg-3.1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.20~dfsg-3.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.20~dfsg-3.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-5951

risk_score 1.5

exploitability 0.5

weighted_severity 3.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-h6q3-ghmc-x3dy

url VCID-haj9-b22r-y3bv

vulnerability_id VCID-haj9-b22r-y3bv

summary An issue was discovered in pdf/pdf_xref.c in Artifex Ghostscript before 10.04.0. There is a buffer overflow during handling of a PDF XRef stream (related to W array values).

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-46952.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-46952.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-46952

reference_id

reference_type

scores

value	0.00065
scoring_system	epss
scoring_elements	0.20387
published_at	2026-06-09T12:55:00Z

value	0.00065
scoring_system	epss
scoring_elements	0.20499
published_at	2026-06-05T12:55:00Z

value	0.00065
scoring_system	epss
scoring_elements	0.20487
published_at	2026-06-06T12:55:00Z

value	0.00065
scoring_system	epss
scoring_elements	0.20447
published_at	2026-06-07T12:55:00Z

value	0.00065
scoring_system	epss
scoring_elements	0.20379
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-46952

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2325041
reference_id	2325041
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2325041

reference_url	https://security.gentoo.org/glsa/202501-06
reference_id	GLSA-202501-06
reference_type
scores
url	https://security.gentoo.org/glsa/202501-06

reference_url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=b1f0827c30f59a2dcbc8a39e42cace7a1de35f7f

reference_id

?id=b1f0827c30f59a2dcbc8a39e42cace7a1de35f7f

reference_type

scores

value	8.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T20:27:55Z/

url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=b1f0827c30f59a2dcbc8a39e42cace7a1de35f7f

reference_url

https://github.com/ArtifexSoftware/ghostpdl/blob/master/doc/News.html

reference_id

News.html

reference_type

scores

value	8.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T20:27:55Z/

url

https://github.com/ArtifexSoftware/ghostpdl/blob/master/doc/News.html

reference_url	https://access.redhat.com/errata/RHSA-2025:4362
reference_id	RHSA-2025:4362
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4362

reference_url	https://access.redhat.com/errata/RHSA-2025:7422
reference_id	RHSA-2025:7422
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7422

reference_url	https://access.redhat.com/errata/RHSA-2025:7499
reference_id	RHSA-2025:7499
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7499

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=708001

reference_id

show_bug.cgi?id=708001

reference_type

scores

value	8.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2024-11-12T20:27:55Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=708001

reference_url	https://usn.ubuntu.com/7103-1/
reference_id	USN-7103-1
reference_type
scores
url	https://usn.ubuntu.com/7103-1/

fixed_packages

url	pkg:deb/debian/ghostscript@0?distro=trixie
purl	pkg:deb/debian/ghostscript@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@0%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u6?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u6%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.04.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.04.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.04.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2024-46952

risk_score 3.8

exploitability 0.5

weighted_severity 7.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-haj9-b22r-y3bv

url VCID-hjbg-99bg-8yca

vulnerability_id VCID-hjbg-99bg-8yca

summary A use-after-free vulnerability in xps_finish_image_path() in devices/vector/gdevxps.c of Artifex Software GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16303.json

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16303.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16303

reference_id

reference_type

scores

value	0.01755
scoring_system	epss
scoring_elements	0.82926
published_at	2026-06-04T12:55:00Z

value	0.01755
scoring_system	epss
scoring_elements	0.82953
published_at	2026-06-09T12:55:00Z

value	0.01755
scoring_system	epss
scoring_elements	0.82949
published_at	2026-06-07T12:55:00Z

value	0.01755
scoring_system	epss
scoring_elements	0.82941
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870258
reference_id	1870258
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870258

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16303

risk_score 3.5

exploitability 0.5

weighted_severity 7.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hjbg-99bg-8yca

url VCID-hkmf-rc5u-tfey

vulnerability_id VCID-hkmf-rc5u-tfey

summary Artifex Ghostscript before 10.03.0 sometimes has a stack-based buffer overflow via the CIDFSubstPath and CIDFSubstFont parameters.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-29507.json

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-29507.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-29507

reference_id

reference_type

scores

value	0.00115
scoring_system	epss
scoring_elements	0.2981
published_at	2026-06-09T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.29893
published_at	2026-06-05T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.29856
published_at	2026-06-06T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.29824
published_at	2026-06-07T12:55:00Z

value	0.00115
scoring_system	epss
scoring_elements	0.29798
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-29507

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2295647
reference_id	2295647
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2295647

reference_url

https://www.openwall.com/lists/oss-security/2024/07/03/7

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-09T15:10:58Z/

url

https://www.openwall.com/lists/oss-security/2024/07/03/7

reference_url

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=7745dbe24514

reference_id

?p=ghostpdl.git%3Ba=commitdiff%3Bh=7745dbe24514

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-09T15:10:58Z/

url

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=7745dbe24514

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=707510

reference_id

show_bug.cgi?id=707510

reference_type

scores

value	5.4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-07-09T15:10:58Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=707510

reference_url	https://usn.ubuntu.com/6897-1/
reference_id	USN-6897-1
reference_type
scores
url	https://usn.ubuntu.com/6897-1/

fixed_packages

url	pkg:deb/debian/ghostscript@0?distro=trixie
purl	pkg:deb/debian/ghostscript@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@0%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u5?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u5?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u5%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.03.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.03.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.03.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2024-29507

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hkmf-rc5u-tfey

url VCID-ht5u-pcj1-n3ee

vulnerability_id VCID-ht5u-pcj1-n3ee

summary An issue was discovered in Artifex Ghostscript before 10.05.0. A buffer overflow occurs during serialization of DollarBlend in a font, for base/write_t1.c and psi/zfapi.c.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27830.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27830.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-27830

reference_id

reference_type

scores

value	0.00061
scoring_system	epss
scoring_elements	0.19086
published_at	2026-06-09T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19179
published_at	2026-06-06T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19138
published_at	2026-06-07T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19065
published_at	2026-06-08T12:55:00Z

value	0.00061
scoring_system	epss
scoring_elements	0.19182
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-27830

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27830
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-27830

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2354953
reference_id	2354953
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2354953

reference_url	https://security.gentoo.org/glsa/202508-02
reference_id	GLSA-202508-02
reference_type
scores
url	https://security.gentoo.org/glsa/202508-02

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=708241

reference_id

show_bug.cgi?id=708241

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-26T13:36:52Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=708241

reference_url	https://usn.ubuntu.com/7378-1/
reference_id	USN-7378-1
reference_type
scores
url	https://usn.ubuntu.com/7378-1/

fixed_packages

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u10?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u10?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u10%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u7?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.05.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.05.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2025-27830

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ht5u-pcj1-n3ee

url VCID-hu5e-1wh7-3ffv

vulnerability_id VCID-hu5e-1wh7-3ffv

summary A buffer overflow vulnerability in mj_raster_cmd() in contrib/japanese/gdevmjc.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16292.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16292.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16292

reference_id

reference_type

scores

value	0.01091
scoring_system	epss
scoring_elements	0.78284
published_at	2026-06-04T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.7831
published_at	2026-06-05T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78318
published_at	2026-06-06T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78308
published_at	2026-06-07T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78296
published_at	2026-06-08T12:55:00Z

value	0.01091
scoring_system	epss
scoring_elements	0.78314
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870237
reference_id	1870237
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870237

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16292

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-hu5e-1wh7-3ffv

url VCID-huwj-vkpq-vqaw

vulnerability_id VCID-huwj-vkpq-vqaw

summary An issue was discovered in the function gdev_prn_open_printer_seekable() in Artifex Ghostscript through 10.02.0 allows remote attackers to crash the application via a dangling pointer.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-46751.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-46751.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-46751

reference_id

reference_type

scores

value	0.00111
scoring_system	epss
scoring_elements	0.29154
published_at	2026-06-05T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29121
published_at	2026-06-06T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29065
published_at	2026-06-09T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29086
published_at	2026-06-07T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29053
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-46751

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2253365
reference_id	2253365
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2253365

reference_url	https://access.redhat.com/errata/RHSA-2025:4362
reference_id	RHSA-2025:4362
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4362

reference_url	https://access.redhat.com/errata/RHSA-2025:7422
reference_id	RHSA-2025:7422
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:7422

reference_url	https://usn.ubuntu.com/6551-1/
reference_id	USN-6551-1
reference_type
scores
url	https://usn.ubuntu.com/6551-1/

fixed_packages

url	pkg:deb/debian/ghostscript@0?distro=trixie
purl	pkg:deb/debian/ghostscript@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@0%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u3?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u3%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.02.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.02.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.02.1~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2023-46751

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-huwj-vkpq-vqaw

url VCID-j5e3-txa5-7qe5

vulnerability_id VCID-j5e3-txa5-7qe5

summary In Artifex Ghostscript through 9.25, the setpattern operator did not properly validate certain types. A specially crafted PostScript document could exploit this to crash Ghostscript or, possibly, execute arbitrary code in the context of the Ghostscript process. This is a type confusion issue because of failure to check whether the Implementation of a pattern dictionary was a structure type.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19134.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19134.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-19134

reference_id

reference_type

scores

value	0.0131
scoring_system	epss
scoring_elements	0.8014
published_at	2026-06-04T12:55:00Z

value	0.0131
scoring_system	epss
scoring_elements	0.80166
published_at	2026-06-05T12:55:00Z

value	0.0131
scoring_system	epss
scoring_elements	0.8017
published_at	2026-06-06T12:55:00Z

value	0.0131
scoring_system	epss
scoring_elements	0.80165
published_at	2026-06-07T12:55:00Z

value	0.0131
scoring_system	epss
scoring_elements	0.80157
published_at	2026-06-08T12:55:00Z

value	0.0131
scoring_system	epss
scoring_elements	0.80178
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-19134

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19134
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19134

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19409
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19409

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19475
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19475

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19476
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19476

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19477
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19477

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19478
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19478

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1655599
reference_id	1655599
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1655599

reference_url	https://access.redhat.com/errata/RHSA-2018:3834
reference_id	RHSA-2018:3834
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3834

fixed_packages

url	pkg:deb/debian/ghostscript@9.26~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.26~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.26~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-19134

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j5e3-txa5-7qe5

url VCID-k8bt-czp3-t7cb

vulnerability_id VCID-k8bt-czp3-t7cb

summary The xps_true_callback_glyph_name function in xps/xpsttf.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (Segmentation Violation and application crash) via a crafted file.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9619.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9619.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-9619

reference_id

reference_type

scores

value	0.00623
scoring_system	epss
scoring_elements	0.70529
published_at	2026-06-04T12:55:00Z

value	0.00623
scoring_system	epss
scoring_elements	0.70571
published_at	2026-06-05T12:55:00Z

value	0.00623
scoring_system	epss
scoring_elements	0.7058
published_at	2026-06-06T12:55:00Z

value	0.00623
scoring_system	epss
scoring_elements	0.70562
published_at	2026-06-07T12:55:00Z

value	0.00623
scoring_system	epss
scoring_elements	0.70551
published_at	2026-06-08T12:55:00Z

value	0.00623
scoring_system	epss
scoring_elements	0.70574
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-9619

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9619
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9619

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1475828
reference_id	1475828
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1475828

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869879
reference_id	869879
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869879

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-9619

risk_score 1.5

exploitability 0.5

weighted_severity 3.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-k8bt-czp3-t7cb

100

url VCID-km2a-bj1g-mygz

vulnerability_id VCID-km2a-bj1g-mygz

summary The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10219.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10219.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-10219

reference_id

reference_type

scores

value	0.00582
scoring_system	epss
scoring_elements	0.69329
published_at	2026-06-04T12:55:00Z

value	0.00582
scoring_system	epss
scoring_elements	0.69369
published_at	2026-06-07T12:55:00Z

value	0.00582
scoring_system	epss
scoring_elements	0.69374
published_at	2026-06-09T12:55:00Z

value	0.00582
scoring_system	epss
scoring_elements	0.69378
published_at	2026-06-06T12:55:00Z

value	0.00582
scoring_system	epss
scoring_elements	0.69354
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-10219

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10219
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10219

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10220
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10220

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5951
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5951

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7207
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7207

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8291

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	2.1
scoring_system	cvssv2
scoring_elements	AV:L/AC:L/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1441569
reference_id	1441569
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1441569

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859666
reference_id	859666
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859666

reference_url	https://security.gentoo.org/glsa/201708-06
reference_id	GLSA-201708-06
reference_type
scores
url	https://security.gentoo.org/glsa/201708-06

reference_url	https://usn.ubuntu.com/3272-1/
reference_id	USN-3272-1
reference_type
scores
url	https://usn.ubuntu.com/3272-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.20~dfsg-3.1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.20~dfsg-3.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.20~dfsg-3.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2016-10219

risk_score 1.5

exploitability 0.5

weighted_severity 3.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-km2a-bj1g-mygz

101

url VCID-kmu9-wwex-pbcy

vulnerability_id VCID-kmu9-wwex-pbcy

summary Artifex Ghostscript before 9.53.0 has an out-of-bounds write and use-after-free in devices/vector/gdevtxtw.c (for txtwrite) because a single character code in a PDF document can map to more than one Unicode code point (e.g., for a ligature).

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-36773.json

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-36773.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-36773

reference_id

reference_type

scores

value	0.00106
scoring_system	epss
scoring_elements	0.28207
published_at	2026-06-04T12:55:00Z

value	0.00106
scoring_system	epss
scoring_elements	0.28147
published_at	2026-06-09T12:55:00Z

value	0.00106
scoring_system	epss
scoring_elements	0.28278
published_at	2026-06-05T12:55:00Z

value	0.00106
scoring_system	epss
scoring_elements	0.28228
published_at	2026-06-06T12:55:00Z

value	0.00106
scoring_system	epss
scoring_elements	0.28186
published_at	2026-06-07T12:55:00Z

value	0.00106
scoring_system	epss
scoring_elements	0.28144
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-36773

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36773
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-36773

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2262734
reference_id	2262734
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2262734

reference_url

https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/tag/gs9530

reference_id

gs9530

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-05T15:56:53Z/

url

https://github.com/ArtifexSoftware/ghostpdl-downloads/releases/tag/gs9530

reference_url

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=8c7bd787defa071c96289b7da9397f673fddb874

reference_id

?p=ghostpdl.git%3Ba=commit%3Bh=8c7bd787defa071c96289b7da9397f673fddb874

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-05T15:56:53Z/

url

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=8c7bd787defa071c96289b7da9397f673fddb874

reference_url

https://bugzilla.opensuse.org/show_bug.cgi?id=1177922

reference_id

show_bug.cgi?id=1177922

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-05T15:56:53Z/

url

https://bugzilla.opensuse.org/show_bug.cgi?id=1177922

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=702229

reference_id

show_bug.cgi?id=702229

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-02-05T15:56:53Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=702229

fixed_packages

url	pkg:deb/debian/ghostscript@9.53.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-36773

risk_score 4.4

exploitability 0.5

weighted_severity 8.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kmu9-wwex-pbcy

102

url VCID-kwta-k9d5-nfa4

vulnerability_id VCID-kwta-k9d5-nfa4

summary The set_text_distance function in devices/vector/gdevpdts.c in the pdfwrite component in Artifex Ghostscript through 9.22 does not prevent overflows in text-positioning calculation, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PDF document.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10194.json

reference_id

reference_type

scores

value	7.0
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-10194.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-10194

reference_id

reference_type

scores

value	0.00648
scoring_system	epss
scoring_elements	0.71169
published_at	2026-06-04T12:55:00Z

value	0.00648
scoring_system	epss
scoring_elements	0.71213
published_at	2026-06-05T12:55:00Z

value	0.00648
scoring_system	epss
scoring_elements	0.71219
published_at	2026-06-06T12:55:00Z

value	0.00648
scoring_system	epss
scoring_elements	0.71202
published_at	2026-06-07T12:55:00Z

value	0.00648
scoring_system	epss
scoring_elements	0.71187
published_at	2026-06-08T12:55:00Z

value	0.00648
scoring_system	epss
scoring_elements	0.71212
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-10194

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10194
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-10194

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1569108
reference_id	1569108
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1569108

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=896069
reference_id	896069
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=896069

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://access.redhat.com/errata/RHSA-2018:2918
reference_id	RHSA-2018:2918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:2918

reference_url	https://usn.ubuntu.com/3636-1/
reference_id	USN-3636-1
reference_type
scores
url	https://usn.ubuntu.com/3636-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-2.1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-2.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-2.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-10194

risk_score 3.1

exploitability 0.5

weighted_severity 6.3

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kwta-k9d5-nfa4

103

url VCID-kwye-fpkg-sybd

vulnerability_id VCID-kwye-fpkg-sybd

summary A null pointer dereference vulnerability in compose_group_nonknockout_nonblend_isolated_allmask_common() in base/gxblend.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16293.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16293.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16293

reference_id

reference_type

scores

value	0.00633
scoring_system	epss
scoring_elements	0.7075
published_at	2026-06-04T12:55:00Z

value	0.00633
scoring_system	epss
scoring_elements	0.70793
published_at	2026-06-05T12:55:00Z

value	0.00633
scoring_system	epss
scoring_elements	0.708
published_at	2026-06-06T12:55:00Z

value	0.00633
scoring_system	epss
scoring_elements	0.70783
published_at	2026-06-07T12:55:00Z

value	0.00633
scoring_system	epss
scoring_elements	0.7077
published_at	2026-06-08T12:55:00Z

value	0.00633
scoring_system	epss
scoring_elements	0.70794
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870231
reference_id	1870231
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870231

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16293

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-kwye-fpkg-sybd

104

url VCID-m7wc-95j6-1kfu

vulnerability_id VCID-m7wc-95j6-1kfu

summary An issue was discovered in Artifex Ghostscript before 9.26. LockSafetyParams is not checked correctly if another device is used.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19409.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19409.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-19409

reference_id

reference_type

scores

value	0.09744
scoring_system	epss
scoring_elements	0.93102
published_at	2026-06-09T12:55:00Z

value	0.09744
scoring_system	epss
scoring_elements	0.93095
published_at	2026-06-07T12:55:00Z

value	0.09744
scoring_system	epss
scoring_elements	0.93093
published_at	2026-06-08T12:55:00Z

value	0.10203
scoring_system	epss
scoring_elements	0.93284
published_at	2026-06-06T12:55:00Z

value	0.10203
scoring_system	epss
scoring_elements	0.93272
published_at	2026-06-04T12:55:00Z

value	0.10203
scoring_system	epss
scoring_elements	0.93283
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-19409

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19134
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19134

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19409
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19409

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19475
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19475

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19476
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19476

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19477
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19477

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19478
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19478

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1652583
reference_id	1652583
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1652583

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://access.redhat.com/errata/RHSA-2018:3834
reference_id	RHSA-2018:3834
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3834

reference_url	https://usn.ubuntu.com/3831-1/
reference_id	USN-3831-1
reference_type
scores
url	https://usn.ubuntu.com/3831-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.26~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.26~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.26~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-19409

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-m7wc-95j6-1kfu

105

url VCID-mfwj-rr8j-zuey

vulnerability_id VCID-mfwj-rr8j-zuey

summary psi/zfjbig2.c in Artifex Ghostscript before 9.26 allows remote attackers to bypass intended access restrictions because of a JBIG2Decode type confusion.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19477.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19477.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-19477

reference_id

reference_type

scores

value	0.00823
scoring_system	epss
scoring_elements	0.7479
published_at	2026-06-04T12:55:00Z

value	0.00823
scoring_system	epss
scoring_elements	0.7482
published_at	2026-06-05T12:55:00Z

value	0.00823
scoring_system	epss
scoring_elements	0.74827
published_at	2026-06-06T12:55:00Z

value	0.00823
scoring_system	epss
scoring_elements	0.74818
published_at	2026-06-07T12:55:00Z

value	0.00823
scoring_system	epss
scoring_elements	0.74802
published_at	2026-06-08T12:55:00Z

value	0.00823
scoring_system	epss
scoring_elements	0.74828
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-19477

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19134
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19134

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19409
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19409

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19475
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19475

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19476
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19476

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19477
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19477

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19478
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19478

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1654468
reference_id	1654468
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1654468

reference_url	https://access.redhat.com/errata/RHSA-2019:0229
reference_id	RHSA-2019:0229
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0229

reference_url	https://usn.ubuntu.com/3831-1/
reference_id	USN-3831-1
reference_type
scores
url	https://usn.ubuntu.com/3831-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.26~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.26~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.26~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-19477

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mfwj-rr8j-zuey

106

url VCID-mgk7-bazw-t3gp

vulnerability_id VCID-mgk7-bazw-t3gp

summary A buffer overflow vulnerability in GetNumWrongData() in contrib/lips4/gdevlips.c of Artifex Software GhostScript from v9.18 to v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16296.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16296.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16296

reference_id

reference_type

scores

value	0.00501
scoring_system	epss
scoring_elements	0.66376
published_at	2026-06-04T12:55:00Z

value	0.00501
scoring_system	epss
scoring_elements	0.66417
published_at	2026-06-05T12:55:00Z

value	0.00501
scoring_system	epss
scoring_elements	0.66425
published_at	2026-06-06T12:55:00Z

value	0.00501
scoring_system	epss
scoring_elements	0.66409
published_at	2026-06-07T12:55:00Z

value	0.00501
scoring_system	epss
scoring_elements	0.66395
published_at	2026-06-08T12:55:00Z

value	0.00501
scoring_system	epss
scoring_elements	0.66413
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870175
reference_id	1870175
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870175

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16296

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mgk7-bazw-t3gp

107

url VCID-mh2p-vw51-eyg3

vulnerability_id VCID-mh2p-vw51-eyg3

summary The gs_makewordimagedevice function in base/gsdevmem.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted file that is mishandled in the PDF Transparency module.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10220.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-10220.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-10220

reference_id

reference_type

scores

value	0.00654
scoring_system	epss
scoring_elements	0.71309
published_at	2026-06-04T12:55:00Z

value	0.00654
scoring_system	epss
scoring_elements	0.71354
published_at	2026-06-05T12:55:00Z

value	0.00654
scoring_system	epss
scoring_elements	0.7136
published_at	2026-06-06T12:55:00Z

value	0.00654
scoring_system	epss
scoring_elements	0.71339
published_at	2026-06-07T12:55:00Z

value	0.00654
scoring_system	epss
scoring_elements	0.71324
published_at	2026-06-08T12:55:00Z

value	0.00654
scoring_system	epss
scoring_elements	0.71348
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-10220

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10219
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10219

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10220
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10220

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5951
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5951

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7207
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7207

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8291

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	1.9
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1441571
reference_id	1441571
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1441571

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859694
reference_id	859694
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=859694

reference_url	https://security.gentoo.org/glsa/201708-06
reference_id	GLSA-201708-06
reference_type
scores
url	https://security.gentoo.org/glsa/201708-06

reference_url	https://usn.ubuntu.com/3272-1/
reference_id	USN-3272-1
reference_type
scores
url	https://usn.ubuntu.com/3272-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.20~dfsg-3.1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.20~dfsg-3.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.20~dfsg-3.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2016-10220

risk_score 1.5

exploitability 0.5

weighted_severity 3.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mh2p-vw51-eyg3

108

url VCID-ms9a-ceur-d3aa

vulnerability_id VCID-ms9a-ceur-d3aa

summary An issue was discovered in Artifex Ghostscript before 10.05.0. Access to arbitrary files can occur through a truncated path with invalid UTF-8 characters, for base/gp_mswin.c and base/winrtsup.cpp.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27837.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27837.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-27837

reference_id

reference_type

scores

value	0.00176
scoring_system	epss
scoring_elements	0.38892
published_at	2026-06-05T12:55:00Z

value	0.00176
scoring_system	epss
scoring_elements	0.38896
published_at	2026-06-06T12:55:00Z

value	0.00176
scoring_system	epss
scoring_elements	0.38851
published_at	2026-06-09T12:55:00Z

value	0.00176
scoring_system	epss
scoring_elements	0.38868
published_at	2026-06-07T12:55:00Z

value	0.00176
scoring_system	epss
scoring_elements	0.38841
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-27837

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2354961
reference_id	2354961
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2354961

reference_url	https://security.gentoo.org/glsa/202508-02
reference_id	GLSA-202508-02
reference_type
scores
url	https://security.gentoo.org/glsa/202508-02

fixed_packages

url	pkg:deb/debian/ghostscript@0?distro=trixie
purl	pkg:deb/debian/ghostscript@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@0%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2025-27837

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ms9a-ceur-d3aa

109

url VCID-mt46-cb5u-jyar

vulnerability_id VCID-mt46-cb5u-jyar

summary psi/zfile.c in Artifex Ghostscript before 9.21rc1 permits the status command even if -dSAFER is used, which might allow remote attackers to determine the existence and size of arbitrary files, a similar issue to CVE-2016-7977.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11645.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-11645.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-11645

reference_id

reference_type

scores

value	0.00538
scoring_system	epss
scoring_elements	0.67909
published_at	2026-06-04T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.67949
published_at	2026-06-09T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.67933
published_at	2026-06-08T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.67956
published_at	2026-06-06T12:55:00Z

value	0.00538
scoring_system	epss
scoring_elements	0.67946
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-11645

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11645
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11645

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17961
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17961

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18073
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18073

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18284
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18284

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1585914
reference_id	1585914
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1585914

reference_url	https://access.redhat.com/errata/RHSA-2019:2281
reference_id	RHSA-2019:2281
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2281

fixed_packages

url	pkg:deb/debian/ghostscript@9.21~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.21~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.21~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-11645

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mt46-cb5u-jyar

110

url VCID-mv74-ysse-f3ef

vulnerability_id VCID-mv74-ysse-f3ef

summary A heap-based buffer overwrite vulnerability was found in GhostScript's lp8000_print_page() function in the gdevlp8k.c file. This flaw allows an attacker to trick a user into opening a crafted PDF file, triggering the heap buffer overflow that could lead to memory corruption or a denial of service.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27792.json

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-27792.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-27792

reference_id

reference_type

scores

value	0.00045
scoring_system	epss
scoring_elements	0.14139
published_at	2026-06-09T12:55:00Z

value	0.00045
scoring_system	epss
scoring_elements	0.14117
published_at	2026-06-08T12:55:00Z

value	0.00047
scoring_system	epss
scoring_elements	0.1506
published_at	2026-06-05T12:55:00Z

value	0.00047
scoring_system	epss
scoring_elements	0.1505
published_at	2026-06-06T12:55:00Z

value	0.00047
scoring_system	epss
scoring_elements	0.1501
published_at	2026-06-07T12:55:00Z

value	0.00047
scoring_system	epss
scoring_elements	0.14974
published_at	2026-06-04T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-27792

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27792
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27792

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2247179
reference_id	2247179
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2247179

reference_url	https://access.redhat.com/errata/RHSA-2025:4362
reference_id	RHSA-2025:4362
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4362

reference_url	https://usn.ubuntu.com/5618-1/
reference_id	USN-5618-1
reference_type
scores
url	https://usn.ubuntu.com/5618-1/

reference_url	https://usn.ubuntu.com/5643-1/
reference_id	USN-5643-1
reference_type
scores
url	https://usn.ubuntu.com/5643-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-27792

risk_score 3.2

exploitability 0.5

weighted_severity 6.4

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-mv74-ysse-f3ef

111

url VCID-my7v-whwc-k7cm

vulnerability_id VCID-my7v-whwc-k7cm

summary The mem_get_bits_rectangle function in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted PostScript document.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7207.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7207.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-7207

reference_id

reference_type

scores

value	0.0033
scoring_system	epss
scoring_elements	0.56244
published_at	2026-06-04T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.563
published_at	2026-06-05T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.56306
published_at	2026-06-06T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.56293
published_at	2026-06-07T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.56276
published_at	2026-06-08T12:55:00Z

value	0.0033
scoring_system	epss
scoring_elements	0.56295
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-7207

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10219
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10219

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10220
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10220

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5951
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5951

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7207
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7207

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8291

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	1.5
scoring_system	cvssv2
scoring_elements	AV:L/AC:M/Au:S/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1434353
reference_id	1434353
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1434353

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858350
reference_id	858350
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=858350

reference_url	https://security.gentoo.org/glsa/201708-06
reference_id	GLSA-201708-06
reference_type
scores
url	https://security.gentoo.org/glsa/201708-06

reference_url	https://access.redhat.com/errata/RHSA-2017:2180
reference_id	RHSA-2017:2180
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:2180

reference_url	https://usn.ubuntu.com/3272-1/
reference_id	USN-3272-1
reference_type
scores
url	https://usn.ubuntu.com/3272-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.20~dfsg-3?distro=trixie
purl	pkg:deb/debian/ghostscript@9.20~dfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.20~dfsg-3%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-7207

risk_score 1.5

exploitability 0.5

weighted_severity 3.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-my7v-whwc-k7cm

112

url VCID-n2uq-fvq9-kkde

vulnerability_id VCID-n2uq-fvq9-kkde

summary psi/ztoken.c in Artifex Ghostscript 9.21 mishandles references to the scanner state structure, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted PostScript document, related to an out-of-bounds read in the igc_reloc_struct_ptr function in psi/igc.c.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11714.json

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11714.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-11714

reference_id

reference_type

scores

value	0.00335
scoring_system	epss
scoring_elements	0.5658
published_at	2026-06-04T12:55:00Z

value	0.00335
scoring_system	epss
scoring_elements	0.56631
published_at	2026-06-09T12:55:00Z

value	0.00335
scoring_system	epss
scoring_elements	0.56627
published_at	2026-06-07T12:55:00Z

value	0.00335
scoring_system	epss
scoring_elements	0.56613
published_at	2026-06-08T12:55:00Z

value	0.00335
scoring_system	epss
scoring_elements	0.56633
published_at	2026-06-05T12:55:00Z

value	0.00335
scoring_system	epss
scoring_elements	0.56639
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-11714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11714
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9611
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9611

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9612
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9612

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9726
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9726

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9727
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9727

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9835
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9835

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:P

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1476192
reference_id	1476192
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1476192

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869977
reference_id	869977
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869977

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://usn.ubuntu.com/3403-1/
reference_id	USN-3403-1
reference_type
scores
url	https://usn.ubuntu.com/3403-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-11714

risk_score 2.0

exploitability 0.5

weighted_severity 4.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n2uq-fvq9-kkde

113

url VCID-n4ez-k1r5-ybaa

vulnerability_id VCID-n4ez-k1r5-ybaa

summary A buffer overflow vulnerability in lprn_is_black() in contrib/lips4/gdevlprn.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16287.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16287.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16287

reference_id

reference_type

scores

value	0.01421
scoring_system	epss
scoring_elements	0.80935
published_at	2026-06-04T12:55:00Z

value	0.01421
scoring_system	epss
scoring_elements	0.80964
published_at	2026-06-05T12:55:00Z

value	0.01421
scoring_system	epss
scoring_elements	0.80966
published_at	2026-06-06T12:55:00Z

value	0.01421
scoring_system	epss
scoring_elements	0.80963
published_at	2026-06-07T12:55:00Z

value	0.01421
scoring_system	epss
scoring_elements	0.8096
published_at	2026-06-08T12:55:00Z

value	0.01421
scoring_system	epss
scoring_elements	0.80979
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870242
reference_id	1870242
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870242

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16287

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n4ez-k1r5-ybaa

114

url VCID-n5cf-fjdn-gbaq

vulnerability_id VCID-n5cf-fjdn-gbaq

summary An issue was discovered in Artifex Ghostscript before 10.05.0. A buffer overflow occurs via an oversized Type 4 function in a PDF document to pdf/pdf_func.c.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27834.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-27834.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-27834

reference_id

reference_type

scores

value	0.00071
scoring_system	epss
scoring_elements	0.21735
published_at	2026-06-09T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21831
published_at	2026-06-06T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21786
published_at	2026-06-07T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21728
published_at	2026-06-08T12:55:00Z

value	0.00071
scoring_system	epss
scoring_elements	0.21843
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-27834

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2354948
reference_id	2354948
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2354948

reference_url	https://security.gentoo.org/glsa/202508-02
reference_id	GLSA-202508-02
reference_type
scores
url	https://security.gentoo.org/glsa/202508-02

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=708253

reference_id

show_bug.cgi?id=708253

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2025-03-26T13:36:54Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=708253

reference_url	https://usn.ubuntu.com/7378-1/
reference_id	USN-7378-1
reference_type
scores
url	https://usn.ubuntu.com/7378-1/

fixed_packages

url	pkg:deb/debian/ghostscript@0?distro=trixie
purl	pkg:deb/debian/ghostscript@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@0%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u7?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u7?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.05.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.05.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2025-27834

risk_score null

exploitability null

weighted_severity null

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n5cf-fjdn-gbaq

115

url VCID-n99y-t84f-fqg4

vulnerability_id VCID-n99y-t84f-fqg4

summary multiple issues

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4516.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2011-4516.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2011-4516

reference_id

reference_type

scores

value	0.47823
scoring_system	epss
scoring_elements	0.97769
published_at	2026-06-04T12:55:00Z

value	0.47823
scoring_system	epss
scoring_elements	0.97772
published_at	2026-06-05T12:55:00Z

value	0.47823
scoring_system	epss
scoring_elements	0.97774
published_at	2026-06-08T12:55:00Z

value	0.47823
scoring_system	epss
scoring_elements	0.97775
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2011-4516

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4516
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4516

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=747726
reference_id	747726
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=747726

reference_url

reference_id

AVG-99

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16291.json

reference_url	https://security.gentoo.org/glsa/201201-10
reference_id	GLSA-201201-10
reference_type
scores
url	https://security.gentoo.org/glsa/201201-10

reference_url	https://access.redhat.com/errata/RHSA-2011:1807
reference_id	RHSA-2011:1807
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1807

reference_url	https://access.redhat.com/errata/RHSA-2011:1811
reference_id	RHSA-2011:1811
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2011:1811

reference_url	https://access.redhat.com/errata/RHSA-2015:0698
reference_id	RHSA-2015:0698
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2015:0698

reference_url	https://usn.ubuntu.com/1315-1/
reference_id	USN-1315-1
reference_type
scores
url	https://usn.ubuntu.com/1315-1/

reference_url	https://usn.ubuntu.com/1317-1/
reference_id	USN-1317-1
reference_type
scores
url	https://usn.ubuntu.com/1317-1/

fixed_packages

url	pkg:deb/debian/ghostscript@8.64~dfsg-2?distro=trixie
purl	pkg:deb/debian/ghostscript@8.64~dfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.64~dfsg-2%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2011-4516

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-n99y-t84f-fqg4

116

url VCID-nkpw-96v9-4uhm

vulnerability_id VCID-nkpw-96v9-4uhm

summary A buffer overflow vulnerability in contrib/gdevdj9.c of Artifex Software GhostScript v9.18 to v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16291.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16291

reference_id

reference_type

scores

value	0.00432
scoring_system	epss
scoring_elements	0.62963
published_at	2026-06-04T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.63005
published_at	2026-06-05T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.63014
published_at	2026-06-06T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.63004
published_at	2026-06-07T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.6299
published_at	2026-06-08T12:55:00Z

value	0.00432
scoring_system	epss
scoring_elements	0.63008
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870240
reference_id	1870240
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870240

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16291

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nkpw-96v9-4uhm

117

url VCID-nmv1-cz8k-hybf

vulnerability_id VCID-nmv1-cz8k-hybf

summary The mark_line_tr function in gxscanc.c in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PostScript document.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8908.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-8908.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-8908

reference_id

reference_type

scores

value	0.00391
scoring_system	epss
scoring_elements	0.60459
published_at	2026-06-04T12:55:00Z

value	0.00391
scoring_system	epss
scoring_elements	0.60497
published_at	2026-06-09T12:55:00Z

value	0.00391
scoring_system	epss
scoring_elements	0.60498
published_at	2026-06-07T12:55:00Z

value	0.00391
scoring_system	epss
scoring_elements	0.60481
published_at	2026-06-08T12:55:00Z

value	0.00391
scoring_system	epss
scoring_elements	0.60507
published_at	2026-06-05T12:55:00Z

value	0.00391
scoring_system	epss
scoring_elements	0.6051
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-8908

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8908
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8908

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv2
scoring_elements	AV:N/AC:M/Au:N/C:N/I:N/A:P

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1451247
reference_id	1451247
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1451247

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-8908

risk_score 1.5

exploitability 0.5

weighted_severity 3.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nmv1-cz8k-hybf

118

url VCID-p26c-d9w1-2bh7

vulnerability_id VCID-p26c-d9w1-2bh7

summary A buffer overflow vulnerability in GetNumSameData() in contrib/lips4/gdevlips.c of Artifex Software GhostScript from v9.18 to v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-17538.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-17538.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-17538

reference_id

reference_type

scores

value	0.00521
scoring_system	epss
scoring_elements	0.67205
published_at	2026-06-04T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.67246
published_at	2026-06-05T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.67254
published_at	2026-06-06T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.67238
published_at	2026-06-07T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.67221
published_at	2026-06-08T12:55:00Z

value	0.00521
scoring_system	epss
scoring_elements	0.67236
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-17538

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870249
reference_id	1870249
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870249

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-17538

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p26c-d9w1-2bh7

119

url VCID-p4nv-1zw3-gue4

vulnerability_id VCID-p4nv-1zw3-gue4

summary sandbox escape

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3838.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3838.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-3838

reference_id

reference_type

scores

value	0.01364
scoring_system	epss
scoring_elements	0.8052
published_at	2026-06-04T12:55:00Z

value	0.01364
scoring_system	epss
scoring_elements	0.80561
published_at	2026-06-09T12:55:00Z

value	0.01364
scoring_system	epss
scoring_elements	0.80545
published_at	2026-06-07T12:55:00Z

value	0.01364
scoring_system	epss
scoring_elements	0.80541
published_at	2026-06-08T12:55:00Z

value	0.01364
scoring_system	epss
scoring_elements	0.80547
published_at	2026-06-05T12:55:00Z

value	0.01364
scoring_system	epss
scoring_elements	0.80548
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-3838

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3835
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3835

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3838
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3838

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1677581
reference_id	1677581
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1677581

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925257
reference_id	925257
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925257

reference_url	https://security.archlinux.org/ASA-201904-5
reference_id	ASA-201904-5
reference_type
scores
url	https://security.archlinux.org/ASA-201904-5

reference_url

reference_id

AVG-929

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://api.first.org/data/v1/epss?cve=CVE-2012-4405

reference_url	https://security.gentoo.org/glsa/202004-03
reference_id	GLSA-202004-03
reference_type
scores
url	https://security.gentoo.org/glsa/202004-03

reference_url	https://access.redhat.com/errata/RHSA-2019:0633
reference_id	RHSA-2019:0633
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0633

reference_url	https://access.redhat.com/errata/RHSA-2019:0971
reference_id	RHSA-2019:0971
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0971

reference_url	https://usn.ubuntu.com/3915-1/
reference_id	USN-3915-1
reference_type
scores
url	https://usn.ubuntu.com/3915-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.27~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.27~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.27~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2019-3838

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-p4nv-1zw3-gue4

120

url VCID-phqc-j7ch-6ybf

vulnerability_id VCID-phqc-j7ch-6ybf

summary Multiple integer underflows in the icmLut_allocate function in International Color Consortium (ICC) Format library (icclib), as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted (1) PostScript or (2) PDF file with embedded images, which triggers a heap-based buffer overflow. NOTE: this issue is also described as an array index error.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4405.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-4405.json

reference_url

reference_id

reference_type

scores

value	0.23786
scoring_system	epss
scoring_elements	0.96109
published_at	2026-06-04T12:55:00Z

value	0.23786
scoring_system	epss
scoring_elements	0.96114
published_at	2026-06-05T12:55:00Z

value	0.23786
scoring_system	epss
scoring_elements	0.96117
published_at	2026-06-08T12:55:00Z

value	0.23786
scoring_system	epss
scoring_elements	0.96123
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2012-4405

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4405
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4405

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=687274
reference_id	687274
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=687274

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=687275
reference_id	687275
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=687275

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=854227
reference_id	854227
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=854227

reference_url	https://security.gentoo.org/glsa/201402-29
reference_id	GLSA-201402-29
reference_type
scores
url	https://security.gentoo.org/glsa/201402-29

reference_url	https://security.gentoo.org/glsa/201412-17
reference_id	GLSA-201412-17
reference_type
scores
url	https://security.gentoo.org/glsa/201412-17

reference_url	https://access.redhat.com/errata/RHSA-2012:1256
reference_id	RHSA-2012:1256
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:1256

reference_url	https://usn.ubuntu.com/1581-1/
reference_id	USN-1581-1
reference_type
scores
url	https://usn.ubuntu.com/1581-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.05~dfsg-6.1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.05~dfsg-6.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.05~dfsg-6.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2012-4405

risk_score 0.1

exploitability 0.5

weighted_severity 0.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-phqc-j7ch-6ybf

121

url VCID-ppzb-a7ar-67et

vulnerability_id VCID-ppzb-a7ar-67et

summary A use after free was found in igc_reloc_struct_ptr() of psi/igc.c of ghostscript-9.25. A local attacker could supply a specially crafted PDF file to cause a denial of service.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14373.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-14373.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-14373

reference_id

reference_type

scores

value	0.00167
scoring_system	epss
scoring_elements	0.37488
published_at	2026-06-04T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.3758
published_at	2026-06-05T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.37583
published_at	2026-06-06T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.37551
published_at	2026-06-07T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.37512
published_at	2026-06-08T12:55:00Z

value	0.00167
scoring_system	epss
scoring_elements	0.37525
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-14373

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14373
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14373

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1873239
reference_id	1873239
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1873239

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

fixed_packages

url	pkg:deb/debian/ghostscript@9.26~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.26~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.26~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-14373

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ppzb-a7ar-67et

122

url VCID-pqvt-wah6-dqfy

vulnerability_id VCID-pqvt-wah6-dqfy

summary In ghostscript before version 9.50, the .buildfont1 procedure did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges and access files outside of restricted areas.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10216.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-10216.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-10216

reference_id

reference_type

scores

value	0.00526
scoring_system	epss
scoring_elements	0.67363
published_at	2026-06-04T12:55:00Z

value	0.00526
scoring_system	epss
scoring_elements	0.67404
published_at	2026-06-05T12:55:00Z

value	0.00526
scoring_system	epss
scoring_elements	0.67411
published_at	2026-06-06T12:55:00Z

value	0.00526
scoring_system	epss
scoring_elements	0.67399
published_at	2026-06-07T12:55:00Z

value	0.00526
scoring_system	epss
scoring_elements	0.67382
published_at	2026-06-08T12:55:00Z

value	0.00526
scoring_system	epss
scoring_elements	0.67398
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-10216

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10216
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-10216

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1737080
reference_id	1737080
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1737080

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934638
reference_id	934638
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=934638

reference_url	https://security.gentoo.org/glsa/202004-03
reference_id	GLSA-202004-03
reference_type
scores
url	https://security.gentoo.org/glsa/202004-03

reference_url	https://access.redhat.com/errata/RHSA-2019:2462
reference_id	RHSA-2019:2462
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2462

reference_url	https://access.redhat.com/errata/RHSA-2019:2465
reference_id	RHSA-2019:2465
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2465

reference_url	https://access.redhat.com/errata/RHSA-2019:2534
reference_id	RHSA-2019:2534
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2534

reference_url	https://usn.ubuntu.com/4092-1/
reference_id	USN-4092-1
reference_type
scores
url	https://usn.ubuntu.com/4092-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.27~dfsg-3.1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.27~dfsg-3.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.27~dfsg-3.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2019-10216

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-pqvt-wah6-dqfy

123

url VCID-q8mp-x3bh-gkhh

vulnerability_id VCID-q8mp-x3bh-gkhh

summary An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. There is an out-of-bounds read when reading color in Indexed color space.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-46955.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-46955.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-46955

reference_id

reference_type

scores

value	0.00044
scoring_system	epss
scoring_elements	0.13715
published_at	2026-06-09T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13805
published_at	2026-06-05T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13808
published_at	2026-06-06T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13769
published_at	2026-06-07T12:55:00Z

value	0.00044
scoring_system	epss
scoring_elements	0.13685
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-46955

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-46955
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-46955

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2325042
reference_id	2325042
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2325042

reference_url	https://security.gentoo.org/glsa/202501-06
reference_id	GLSA-202501-06
reference_type
scores
url	https://security.gentoo.org/glsa/202501-06

reference_url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=85bd9d2f4b792fe67aef22f1a4117457461b8ba6

reference_id

?id=85bd9d2f4b792fe67aef22f1a4117457461b8ba6

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-12T19:58:59Z/

url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=85bd9d2f4b792fe67aef22f1a4117457461b8ba6

reference_url

https://github.com/ArtifexSoftware/ghostpdl/blob/master/doc/News.html

reference_id

News.html

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-12T19:58:59Z/

url

https://github.com/ArtifexSoftware/ghostpdl/blob/master/doc/News.html

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=707990

reference_id

show_bug.cgi?id=707990

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-12T19:58:59Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=707990

reference_url

https://www.suse.com/support/update/announcement/2024/suse-su-20243942-1/

reference_id

suse-su-20243942-1

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-12T19:58:59Z/

url

https://www.suse.com/support/update/announcement/2024/suse-su-20243942-1/

reference_url	https://usn.ubuntu.com/7103-1/
reference_id	USN-7103-1
reference_type
scores
url	https://usn.ubuntu.com/7103-1/

reference_url	https://usn.ubuntu.com/7138-1/
reference_id	USN-7138-1
reference_type
scores
url	https://usn.ubuntu.com/7138-1/

fixed_packages

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u9?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u9?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u9%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u6?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u6?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u6%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.04.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.04.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.04.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2024-46955

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-q8mp-x3bh-gkhh

124

url VCID-qars-bj14-tkdb

vulnerability_id VCID-qars-bj14-tkdb

summary Integer overflow in the mark_curve function in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified other impact via a crafted PostScript document.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7948.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-7948.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-7948

reference_id

reference_type

scores

value	0.00226
scoring_system	epss
scoring_elements	0.45378
published_at	2026-06-04T12:55:00Z

value	0.00226
scoring_system	epss
scoring_elements	0.45447
published_at	2026-06-05T12:55:00Z

value	0.00226
scoring_system	epss
scoring_elements	0.45451
published_at	2026-06-06T12:55:00Z

value	0.00226
scoring_system	epss
scoring_elements	0.45431
published_at	2026-06-07T12:55:00Z

value	0.00226
scoring_system	epss
scoring_elements	0.45406
published_at	2026-06-08T12:55:00Z

value	0.00226
scoring_system	epss
scoring_elements	0.45418
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-7948

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7948
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7948

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5
scoring_system	cvssv2
scoring_elements	AV:N/AC:L/Au:N/C:N/I:N/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1444944
reference_id	1444944
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1444944

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-7948

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qars-bj14-tkdb

125

url VCID-qhtq-vd1e-n3he

vulnerability_id VCID-qhtq-vd1e-n3he

summary Artifex Ghostscript before 9.25 allowed a user-writable error exception table, which could be used by remote attackers able to supply crafted PostScript to potentially overwrite or replace error handlers to inject code.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17183.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-17183.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-17183

reference_id

reference_type

scores

value	0.00351
scoring_system	epss
scoring_elements	0.5777
published_at	2026-06-04T12:55:00Z

value	0.00351
scoring_system	epss
scoring_elements	0.57823
published_at	2026-06-09T12:55:00Z

value	0.00351
scoring_system	epss
scoring_elements	0.57806
published_at	2026-06-08T12:55:00Z

value	0.00351
scoring_system	epss
scoring_elements	0.57831
published_at	2026-06-06T12:55:00Z

value	0.00351
scoring_system	epss
scoring_elements	0.5782
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-17183

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16509
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16509

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16802
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16802

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17183
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17183

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1632471
reference_id	1632471
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1632471

reference_url	https://access.redhat.com/errata/RHSA-2018:3834
reference_id	RHSA-2018:3834
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3834

reference_url	https://usn.ubuntu.com/3773-1/
reference_id	USN-3773-1
reference_type
scores
url	https://usn.ubuntu.com/3773-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.25~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.25~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.25~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-17183

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qhtq-vd1e-n3he

126

url VCID-rgnx-53qv-k7ck

vulnerability_id VCID-rgnx-53qv-k7ck

summary A Division by Zero vulnerability in bj10v_print_page() in contrib/japanese/gdev10v.c of Artifex Software GhostScript v9.50 allows a remote attacker to cause a denial of service via a crafted PDF file. This is fixed in v9.51.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16299.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-16299.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-16299

reference_id

reference_type

scores

value	0.00968
scoring_system	epss
scoring_elements	0.76942
published_at	2026-06-04T12:55:00Z

value	0.00968
scoring_system	epss
scoring_elements	0.76975
published_at	2026-06-05T12:55:00Z

value	0.00968
scoring_system	epss
scoring_elements	0.76984
published_at	2026-06-06T12:55:00Z

value	0.00968
scoring_system	epss
scoring_elements	0.76972
published_at	2026-06-07T12:55:00Z

value	0.00968
scoring_system	epss
scoring_elements	0.76961
published_at	2026-06-08T12:55:00Z

value	0.00968
scoring_system	epss
scoring_elements	0.76982
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16287

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16288

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16289

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16290

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16291

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16292

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16293

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16294

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16295

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16296

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16297

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16298

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16299

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16300

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16301

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16302

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16303

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16304

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16305

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16306

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16307

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16308

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16309

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16310

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-17538

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1870171
reference_id	1870171
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1870171

reference_url	https://security.gentoo.org/glsa/202008-20
reference_id	GLSA-202008-20
reference_type
scores
url	https://security.gentoo.org/glsa/202008-20

reference_url	https://access.redhat.com/errata/RHSA-2021:1852
reference_id	RHSA-2021:1852
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2021:1852

reference_url	https://usn.ubuntu.com/4469-1/
reference_id	USN-4469-1
reference_type
scores
url	https://usn.ubuntu.com/4469-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-16299

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rgnx-53qv-k7ck

127

url VCID-runm-78xb-hkgr

vulnerability_id VCID-runm-78xb-hkgr

summary Stack-based buffer overflow in the zseticcspace function in zicc.c in Ghostscript 8.61 and earlier allows remote attackers to execute arbitrary code via a postscript (.ps) file containing a long Range array in a .seticcspace operator.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0411.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-0411.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-0411

reference_id

reference_type

scores

value	0.15307
scoring_system	epss
scoring_elements	0.94753
published_at	2026-06-04T12:55:00Z

value	0.15307
scoring_system	epss
scoring_elements	0.94762
published_at	2026-06-05T12:55:00Z

value	0.15307
scoring_system	epss
scoring_elements	0.94764
published_at	2026-06-08T12:55:00Z

value	0.15307
scoring_system	epss
scoring_elements	0.94765
published_at	2026-06-07T12:55:00Z

value	0.15307
scoring_system	epss
scoring_elements	0.9477
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-0411

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0411
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0411

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=431536
reference_id	431536
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=431536

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=468190
reference_id	468190
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=468190

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/31309.c
reference_id	CVE-2008-0411;OSVDB-42310
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/31309.c

reference_url	https://www.securityfocus.com/bid/28017/info
reference_id	CVE-2008-0411;OSVDB-42310
reference_type	exploit
scores
url	https://www.securityfocus.com/bid/28017/info

reference_url	https://security.gentoo.org/glsa/200803-14
reference_id	GLSA-200803-14
reference_type
scores
url	https://security.gentoo.org/glsa/200803-14

reference_url	https://access.redhat.com/errata/RHSA-2008:0155
reference_id	RHSA-2008:0155
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2008:0155

reference_url	https://usn.ubuntu.com/599-1/
reference_id	USN-599-1
reference_type
scores
url	https://usn.ubuntu.com/599-1/

fixed_packages

url	pkg:deb/debian/ghostscript@8.61.dfsg.1-1.1?distro=trixie
purl	pkg:deb/debian/ghostscript@8.61.dfsg.1-1.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.61.dfsg.1-1.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2008-0411

risk_score 0.2

exploitability 2.0

weighted_severity 0.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-runm-78xb-hkgr

128

url VCID-rysb-2ybv-87g2

vulnerability_id VCID-rysb-2ybv-87g2

summary A divide by zero issue discovered in eps_print_page in gdevepsn.c in Artifex Software GhostScript 9.50 allows remote attackers to cause a denial of service via opening of crafted PDF file.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-21710.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2020-21710.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2020-21710

reference_id

reference_type

scores

value	0.00375
scoring_system	epss
scoring_elements	0.59458
published_at	2026-06-04T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59501
published_at	2026-06-09T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59508
published_at	2026-06-05T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59512
published_at	2026-06-06T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59503
published_at	2026-06-07T12:55:00Z

value	0.00375
scoring_system	epss
scoring_elements	0.59484
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2020-21710

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-21710
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-21710

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2235001
reference_id	2235001
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2235001

reference_url

https://lists.debian.org/debian-lts-announce/2023/09/msg00029.html

reference_id

msg00029.html

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T20:07:44Z/

url

https://lists.debian.org/debian-lts-announce/2023/09/msg00029.html

reference_url

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=4e713293de84b689c4ab358f3e110ea54aa81925

reference_id

?p=ghostpdl.git%3Ba=commit%3Bh=4e713293de84b689c4ab358f3e110ea54aa81925

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T20:07:44Z/

url

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=4e713293de84b689c4ab358f3e110ea54aa81925

reference_url	https://access.redhat.com/errata/RHSA-2024:2966
reference_id	RHSA-2024:2966
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2966

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=701843

reference_id

show_bug.cgi?id=701843

reference_type

scores

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-03T20:07:44Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=701843

reference_url	https://usn.ubuntu.com/6364-1/
reference_id	USN-6364-1
reference_type
scores
url	https://usn.ubuntu.com/6364-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.51~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.51~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2020-21710

risk_score 3.0

exploitability 0.5

weighted_severity 5.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-rysb-2ybv-87g2

129

url VCID-s32m-vhrq-x7ez

vulnerability_id VCID-s32m-vhrq-x7ez

summary The xps_load_sfnt_name function in xps/xpsfont.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted document.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9618.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9618.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-9618

reference_id

reference_type

scores

value	0.00885
scoring_system	epss
scoring_elements	0.7581
published_at	2026-06-04T12:55:00Z

value	0.00885
scoring_system	epss
scoring_elements	0.75837
published_at	2026-06-05T12:55:00Z

value	0.00885
scoring_system	epss
scoring_elements	0.75836
published_at	2026-06-06T12:55:00Z

value	0.00885
scoring_system	epss
scoring_elements	0.75828
published_at	2026-06-07T12:55:00Z

value	0.00885
scoring_system	epss
scoring_elements	0.75815
published_at	2026-06-08T12:55:00Z

value	0.00885
scoring_system	epss
scoring_elements	0.7584
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-9618

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9618
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9618

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1475827
reference_id	1475827
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1475827

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869879
reference_id	869879
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869879

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-9618

risk_score 1.5

exploitability 0.5

weighted_severity 3.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s32m-vhrq-x7ez

130

url VCID-s49w-4m43-1fcb

vulnerability_id VCID-s49w-4m43-1fcb

summary A vulnerability classified as problematic was found in GhostPCL 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1350.json

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-1350.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-1350

reference_id

reference_type

scores

value	0.00415
scoring_system	epss
scoring_elements	0.61957
published_at	2026-06-04T12:55:00Z

value	0.00415
scoring_system	epss
scoring_elements	0.62002
published_at	2026-06-09T12:55:00Z

value	0.00415
scoring_system	epss
scoring_elements	0.62006
published_at	2026-06-05T12:55:00Z

value	0.00415
scoring_system	epss
scoring_elements	0.62013
published_at	2026-06-06T12:55:00Z

value	0.00415
scoring_system	epss
scoring_elements	0.62001
published_at	2026-06-07T12:55:00Z

value	0.00415
scoring_system	epss
scoring_elements	0.61986
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-1350

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-1350

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2075523
reference_id	2075523
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2075523

reference_url

https://bugs.ghostscript.com/attachment.cgi?id=22323

reference_id

attachment.cgi?id=22323

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T17:15:08Z/

url

https://bugs.ghostscript.com/attachment.cgi?id=22323

reference_url

https://vuldb.com/?id.197290

reference_id

?id.197290

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T17:15:08Z/

url

https://vuldb.com/?id.197290

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=705156

reference_id

show_bug.cgi?id=705156

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-04-14T17:15:08Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=705156

fixed_packages

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-3?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-3%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2022-1350

risk_score 1.9

exploitability 0.5

weighted_severity 3.9

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-s49w-4m43-1fcb

131

url VCID-sgmt-yzk3-tfhe

vulnerability_id VCID-sgmt-yzk3-tfhe

summary An issue was discovered in Artifex Ghostscript before 9.24. Incorrect exec stack handling in the "CS" and "SC" PDF primitives could be used by remote attackers able to supply crafted PDFs to crash the interpreter or possibly have unspecified other impact.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16510.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16510.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16510

reference_id

reference_type

scores

value	0.00223
scoring_system	epss
scoring_elements	0.4495
published_at	2026-06-04T12:55:00Z

value	0.00223
scoring_system	epss
scoring_elements	0.45019
published_at	2026-06-05T12:55:00Z

value	0.00223
scoring_system	epss
scoring_elements	0.45023
published_at	2026-06-06T12:55:00Z

value	0.00223
scoring_system	epss
scoring_elements	0.45003
published_at	2026-06-07T12:55:00Z

value	0.00223
scoring_system	epss
scoring_elements	0.44974
published_at	2026-06-08T12:55:00Z

value	0.00223
scoring_system	epss
scoring_elements	0.44986
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16510

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16510
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16510

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1625836
reference_id	1625836
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1625836

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908304
reference_id	908304
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=908304

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://usn.ubuntu.com/3773-1/
reference_id	USN-3773-1
reference_type
scores
url	https://usn.ubuntu.com/3773-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.25~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.25~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.25~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-16510

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sgmt-yzk3-tfhe

132

url VCID-sut8-f3nq-2qcy

vulnerability_id VCID-sut8-f3nq-2qcy

summary The Ins_IP function in base/ttinterp.c in Artifex Ghostscript GhostXPS 9.21 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact via a crafted document.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9612.json

reference_id

reference_type

scores

value	3.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9612.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-9612

reference_id

reference_type

scores

value	0.0129
scoring_system	epss
scoring_elements	0.80003
published_at	2026-06-04T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80038
published_at	2026-06-09T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80028
published_at	2026-06-07T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80018
published_at	2026-06-08T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80029
published_at	2026-06-05T12:55:00Z

value	0.0129
scoring_system	epss
scoring_elements	0.80034
published_at	2026-06-06T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-9612

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11714
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11714

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9611
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9611

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9612
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9612

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9726
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9726

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9727
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9727

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9739
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9739

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9835
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9835

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:P

value	8.1
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1475826
reference_id	1475826
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1475826

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869916
reference_id	869916
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=869916

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://usn.ubuntu.com/3403-1/
reference_id	USN-3403-1
reference_type
scores
url	https://usn.ubuntu.com/3403-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-9612

risk_score 2.0

exploitability 0.5

weighted_severity 4.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-sut8-f3nq-2qcy

133

url VCID-swsd-4dse-a7g3

vulnerability_id VCID-swsd-4dse-a7g3

summary Artifex Ghostscript 9.22 is affected by: Obtain Information. The impact is: obtain sensitive information. The component is: affected source code file, affected function, affected executable, affected libga (imagemagick used that). The attack vector is: Someone must open a postscript file though ghostscript. Because of imagemagick also use libga, so it was affected as well.

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2017-15652

reference_id

reference_type

scores

value	0.00255
scoring_system	epss
scoring_elements	0.49182
published_at	2026-06-06T12:55:00Z

value	0.00255
scoring_system	epss
scoring_elements	0.49148
published_at	2026-06-09T12:55:00Z

value	0.00255
scoring_system	epss
scoring_elements	0.49171
published_at	2026-06-05T12:55:00Z

value	0.00255
scoring_system	epss
scoring_elements	0.4911
published_at	2026-06-04T12:55:00Z

value	0.00255
scoring_system	epss
scoring_elements	0.49166
published_at	2026-06-07T12:55:00Z

value	0.00255
scoring_system	epss
scoring_elements	0.49136
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2017-15652

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15652
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15652

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

fixed_packages

url	pkg:deb/debian/ghostscript@9.25~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.25~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.25~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2017-15652

risk_score 1.4

exploitability 0.5

weighted_severity 2.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-swsd-4dse-a7g3

134

url VCID-t599-r2v8-wqhb

vulnerability_id VCID-t599-r2v8-wqhb

summary An issue was discovered in Artifex Ghostscript before 9.25. Incorrect "restoration of privilege" checking when running out of stack during exception handling could be used by attackers able to supply crafted PostScript to execute code using the "pipe" instruction. This is due to an incomplete fix for CVE-2018-16509.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16802.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16802.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16802

reference_id

reference_type

scores

value	0.00971
scoring_system	epss
scoring_elements	0.76972
published_at	2026-06-04T12:55:00Z

value	0.00971
scoring_system	epss
scoring_elements	0.77005
published_at	2026-06-05T12:55:00Z

value	0.00971
scoring_system	epss
scoring_elements	0.77014
published_at	2026-06-06T12:55:00Z

value	0.00971
scoring_system	epss
scoring_elements	0.77002
published_at	2026-06-07T12:55:00Z

value	0.00971
scoring_system	epss
scoring_elements	0.76991
published_at	2026-06-08T12:55:00Z

value	0.00971
scoring_system	epss
scoring_elements	0.77012
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16802

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16509
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16509

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16802
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16802

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17183
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17183

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1627959
reference_id	1627959
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1627959

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://access.redhat.com/errata/RHSA-2018:3834
reference_id	RHSA-2018:3834
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3834

fixed_packages

url	pkg:deb/debian/ghostscript@9.25~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.25~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.25~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-16802

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t599-r2v8-wqhb

135

url VCID-t7bx-c3qz-ybav

vulnerability_id VCID-t7bx-c3qz-ybav

summary An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur (via a crafted PostScript document) because of path reduction in base/gpmisc.c. For example, restrictions on use of %pipe% can be bypassed via the aa/../%pipe%command# output filename.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-33869.json

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-33869.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-33869

reference_id

reference_type

scores

value	0.00014
scoring_system	epss
scoring_elements	0.02794
published_at	2026-06-09T12:55:00Z

value	0.00014
scoring_system	epss
scoring_elements	0.02888
published_at	2026-06-05T12:55:00Z

value	0.00014
scoring_system	epss
scoring_elements	0.02895
published_at	2026-06-06T12:55:00Z

value	0.00014
scoring_system	epss
scoring_elements	0.02842
published_at	2026-06-07T12:55:00Z

value	0.00014
scoring_system	epss
scoring_elements	0.02826
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-33869

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52722
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52722

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29510
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-29510

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33869
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33869

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33870
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33870

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33871
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-33871

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://www.openwall.com/lists/oss-security/2024/06/28/2

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-19T20:27:59Z/

url

https://www.openwall.com/lists/oss-security/2024/06/28/2

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2293958
reference_id	2293958
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2293958

reference_url	https://security.gentoo.org/glsa/202409-03
reference_id	GLSA-202409-03
reference_type
scores
url	https://security.gentoo.org/glsa/202409-03

reference_url	https://access.redhat.com/errata/RHSA-2024:6197
reference_id	RHSA-2024:6197
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6197

reference_url	https://access.redhat.com/errata/RHSA-2024:6466
reference_id	RHSA-2024:6466
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:6466

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=707691

reference_id

show_bug.cgi?id=707691

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-08-19T20:27:59Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=707691

reference_url	https://usn.ubuntu.com/6835-1/
reference_id	USN-6835-1
reference_type
scores
url	https://usn.ubuntu.com/6835-1/

fixed_packages

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u4?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u4%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.03.1~dfsg~git20240518-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.03.1~dfsg~git20240518-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.03.1~dfsg~git20240518-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2024-33869

risk_score 2.4

exploitability 0.5

weighted_severity 4.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-t7bx-c3qz-ybav

136

url VCID-tef4-t2kr-r3h9

vulnerability_id VCID-tef4-t2kr-r3h9

summary sandbox escape

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6116.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-6116.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-6116

reference_id

reference_type

scores

value	0.60542
scoring_system	epss
scoring_elements	0.98313
published_at	2026-06-04T12:55:00Z

value	0.60542
scoring_system	epss
scoring_elements	0.98315
published_at	2026-06-09T12:55:00Z

value	0.60542
scoring_system	epss
scoring_elements	0.98317
published_at	2026-06-06T12:55:00Z

value	0.60542
scoring_system	epss
scoring_elements	0.98318
published_at	2026-06-08T12:55:00Z

value	0.60542
scoring_system	epss
scoring_elements	0.98316
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-6116

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6116
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6116

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1666636
reference_id	1666636
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1666636

reference_url	https://security.archlinux.org/ASA-201901-18
reference_id	ASA-201901-18
reference_type
scores
url	https://security.archlinux.org/ASA-201901-18

reference_url

https://security.archlinux.org/AVG-860

reference_id

AVG-860

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-860

reference_url	https://bugs.chromium.org/p/project-zero/issues/detail?id=1729&desc=2
reference_id	CVE-2019-6116
reference_type	exploit
scores
url	https://bugs.chromium.org/p/project-zero/issues/detail?id=1729&desc=2

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/46242.txt
reference_id	CVE-2019-6116
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/remote/46242.txt

reference_url	https://security.gentoo.org/glsa/202004-03
reference_id	GLSA-202004-03
reference_type
scores
url	https://security.gentoo.org/glsa/202004-03

reference_url	https://access.redhat.com/errata/RHSA-2019:0229
reference_id	RHSA-2019:0229
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0229

reference_url	https://usn.ubuntu.com/3866-1/
reference_id	USN-3866-1
reference_type
scores
url	https://usn.ubuntu.com/3866-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.26a~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.26a~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.26a~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2019-6116

risk_score 10.0

exploitability 2.0

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tef4-t2kr-r3h9

137

url VCID-tevq-sfa8-m7dr

vulnerability_id VCID-tevq-sfa8-m7dr

summary sandbox escape

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3835.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-3835.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-3835

reference_id

reference_type

scores

value	0.01643
scoring_system	epss
scoring_elements	0.823
published_at	2026-06-04T12:55:00Z

value	0.01643
scoring_system	epss
scoring_elements	0.82336
published_at	2026-06-09T12:55:00Z

value	0.01643
scoring_system	epss
scoring_elements	0.82328
published_at	2026-06-07T12:55:00Z

value	0.01643
scoring_system	epss
scoring_elements	0.82322
published_at	2026-06-08T12:55:00Z

value	0.01643
scoring_system	epss
scoring_elements	0.82329
published_at	2026-06-05T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-3835

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3835
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3835

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3838
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3838

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1677588
reference_id	1677588
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1677588

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925256
reference_id	925256
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=925256

reference_url	https://security.archlinux.org/ASA-201904-5
reference_id	ASA-201904-5
reference_type
scores
url	https://security.archlinux.org/ASA-201904-5

reference_url

reference_id

AVG-929

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16513.json

reference_url	https://security.gentoo.org/glsa/202004-03
reference_id	GLSA-202004-03
reference_type
scores
url	https://security.gentoo.org/glsa/202004-03

reference_url	https://access.redhat.com/errata/RHSA-2019:0633
reference_id	RHSA-2019:0633
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0633

reference_url	https://access.redhat.com/errata/RHSA-2019:0971
reference_id	RHSA-2019:0971
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:0971

reference_url	https://usn.ubuntu.com/3915-1/
reference_id	USN-3915-1
reference_type
scores
url	https://usn.ubuntu.com/3915-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.27~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.27~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.27~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2019-3835

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tevq-sfa8-m7dr

138

url VCID-trr9-9xsb-fqdj

vulnerability_id VCID-trr9-9xsb-fqdj

summary In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use a type confusion in the setcolor function to crash the interpreter or possibly have unspecified other impact.

references

reference_url

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16513.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16513

reference_id

reference_type

scores

value	0.00255
scoring_system	epss
scoring_elements	0.49031
published_at	2026-06-04T12:55:00Z

value	0.00255
scoring_system	epss
scoring_elements	0.49092
published_at	2026-06-05T12:55:00Z

value	0.00255
scoring_system	epss
scoring_elements	0.49102
published_at	2026-06-06T12:55:00Z

value	0.00255
scoring_system	epss
scoring_elements	0.49086
published_at	2026-06-07T12:55:00Z

value	0.00255
scoring_system	epss
scoring_elements	0.49057
published_at	2026-06-08T12:55:00Z

value	0.00255
scoring_system	epss
scoring_elements	0.49069
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1619750
reference_id	1619750
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1619750

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332
reference_id	907332
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-3?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-3%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-16513

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-trr9-9xsb-fqdj

139

url VCID-u1hf-xsds-qyd1

vulnerability_id VCID-u1hf-xsds-qyd1

summary A flaw was found in ghostscript. The fix for CVE-2020-16305 in ghostscript was not included in RHSA-2021:1852-06 advisory as it was claimed to be. This issue only affects the ghostscript package as shipped with Red Hat Enterprise Linux 8.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-4042.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-4042.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-4042

reference_id

reference_type

scores

value	0.00036
scoring_system	epss
scoring_elements	0.10899
published_at	2026-06-09T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.11004
published_at	2026-06-05T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10996
published_at	2026-06-06T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10962
published_at	2026-06-07T12:55:00Z

value	0.00036
scoring_system	epss
scoring_elements	0.10881
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-4042

reference_url

https://bugzilla.redhat.com/show_bug.cgi?id=2228151

reference_id

2228151

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:58:03Z/

url

https://bugzilla.redhat.com/show_bug.cgi?id=2228151

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream
reference_id	cpe:/a:redhat:enterprise_linux:8::appstream
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb
reference_id	cpe:/a:redhat:enterprise_linux:8::crb
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6
reference_id	cpe:/o:redhat:enterprise_linux:6
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7
reference_id	cpe:/o:redhat:enterprise_linux:7
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8
reference_id	cpe:/o:redhat:enterprise_linux:8
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8

reference_url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9
reference_id	cpe:/o:redhat:enterprise_linux:9
reference_type
scores
url	https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9

reference_url

https://access.redhat.com/security/cve/CVE-2023-4042

reference_id

CVE-2023-4042

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:58:03Z/

url

https://access.redhat.com/security/cve/CVE-2023-4042

reference_url

https://access.redhat.com/errata/RHSA-2023:7053

reference_id

RHSA-2023:7053

reference_type

scores

value	5.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-07-01T13:58:03Z/

url

https://access.redhat.com/errata/RHSA-2023:7053

fixed_packages

url	pkg:deb/debian/ghostscript@0?distro=trixie
purl	pkg:deb/debian/ghostscript@0?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@0%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2023-4042

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u1hf-xsds-qyd1

140

url VCID-u1n1-5gwt-17fp

vulnerability_id VCID-u1n1-5gwt-17fp

summary sandbox escape

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14812.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2019-14812.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2019-14812

reference_id

reference_type

scores

value	0.00543
scoring_system	epss
scoring_elements	0.68083
published_at	2026-06-04T12:55:00Z

value	0.00543
scoring_system	epss
scoring_elements	0.68124
published_at	2026-06-09T12:55:00Z

value	0.00543
scoring_system	epss
scoring_elements	0.68131
published_at	2026-06-06T12:55:00Z

value	0.00543
scoring_system	epss
scoring_elements	0.68108
published_at	2026-06-08T12:55:00Z

value	0.00543
scoring_system	epss
scoring_elements	0.68123
published_at	2026-06-07T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2019-14812

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14811
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14811

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14812
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14812

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14813
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14813

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14817
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14817

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1743754
reference_id	1743754
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1743754

reference_url	https://security.archlinux.org/ASA-201911-5
reference_id	ASA-201911-5
reference_type
scores
url	https://security.archlinux.org/ASA-201911-5

reference_url

reference_id

AVG-1031

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59799.json

reference_url	https://security.gentoo.org/glsa/202004-03
reference_id	GLSA-202004-03
reference_type
scores
url	https://security.gentoo.org/glsa/202004-03

reference_url	https://access.redhat.com/errata/RHSA-2019:2534
reference_id	RHSA-2019:2534
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2534

reference_url	https://access.redhat.com/errata/RHSA-2019:2586
reference_id	RHSA-2019:2586
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2586

reference_url	https://access.redhat.com/errata/RHSA-2019:2591
reference_id	RHSA-2019:2591
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2019:2591

reference_url	https://usn.ubuntu.com/4111-1/
reference_id	USN-4111-1
reference_type
scores
url	https://usn.ubuntu.com/4111-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.28~~rc2~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.28~~rc2~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.28~~rc2~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2019-14812

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-u1n1-5gwt-17fp

141

url VCID-v74m-sq83-77ge

vulnerability_id VCID-v74m-sq83-77ge

summary Artifex Ghostscript through 10.05.1 has a stack-based buffer overflow in pdfmark_coerce_dest in devices/vector/gdevpdfm.c via a large size value.

references

reference_url

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-59799.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-59799

reference_id

reference_type

scores

value	0.00018
scoring_system	epss
scoring_elements	0.04679
published_at	2026-06-05T12:55:00Z

value	0.00018
scoring_system	epss
scoring_elements	0.04651
published_at	2026-06-07T12:55:00Z

value	0.00018
scoring_system	epss
scoring_elements	0.04664
published_at	2026-06-06T12:55:00Z

value	0.00024
scoring_system	epss
scoring_elements	0.06877
published_at	2026-06-09T12:55:00Z

value	0.00024
scoring_system	epss
scoring_elements	0.06871
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-59799

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59799
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59799

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1116443
reference_id	1116443
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1116443

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2397227
reference_id	2397227
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2397227

reference_url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=6dab38fb211f15226c242ab7a83fa53e4b0ff781

reference_id

?id=6dab38fb211f15226c242ab7a83fa53e4b0ff781

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-23T13:48:50Z/

url

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=6dab38fb211f15226c242ab7a83fa53e4b0ff781

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=708517

reference_id

show_bug.cgi?id=708517

reference_type

scores

value	4.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2025-09-23T13:48:50Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=708517

reference_url	https://usn.ubuntu.com/7782-1/
reference_id	USN-7782-1
reference_type
scores
url	https://usn.ubuntu.com/7782-1/

reference_url	https://usn.ubuntu.com/7904-1/
reference_id	USN-7904-1
reference_type
scores
url	https://usn.ubuntu.com/7904-1/

fixed_packages

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u11?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u11?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u11%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.06.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.06.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.06.0~dfsg-1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2025-59799

risk_score 1.8

exploitability 0.5

weighted_severity 3.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-v74m-sq83-77ge

142

url VCID-w3f3-7mug-rkba

vulnerability_id VCID-w3f3-7mug-rkba

summary In Artifex Ghostscript through 10.01.0, there is a buffer overflow leading to potential corruption of data internal to the PostScript interpreter, in base/sbcp.c. This affects BCPEncode, BCPDecode, TBCPEncode, and TBCPDecode. If the write buffer is filled to one byte less than full, and one then tries to write an escaped character, two bytes are written.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28879.json

reference_id

reference_type

scores

value	8.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-28879.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-28879

reference_id

reference_type

scores

value	0.30764
scoring_system	epss
scoring_elements	0.96832
published_at	2026-06-09T12:55:00Z

value	0.30764
scoring_system	epss
scoring_elements	0.96823
published_at	2026-06-05T12:55:00Z

value	0.30764
scoring_system	epss
scoring_elements	0.96828
published_at	2026-06-07T12:55:00Z

value	0.30764
scoring_system	epss
scoring_elements	0.96827
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-28879

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28879
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-28879

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033757
reference_id	1033757
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1033757

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2184585
reference_id	2184585
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2184585

reference_url

http://www.openwall.com/lists/oss-security/2023/04/12/4

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-02-14T19:29:27Z/

url

http://www.openwall.com/lists/oss-security/2023/04/12/4

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CI6UCKM3XMK7PYNIRGAVDJ5VKN6XYZOE/

reference_id

CI6UCKM3XMK7PYNIRGAVDJ5VKN6XYZOE

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-02-14T19:29:27Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CI6UCKM3XMK7PYNIRGAVDJ5VKN6XYZOE/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DHJX62KSRIOBZA6FKONMJP7MEFY7LTH2/

reference_id

DHJX62KSRIOBZA6FKONMJP7MEFY7LTH2

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-02-14T19:29:27Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DHJX62KSRIOBZA6FKONMJP7MEFY7LTH2/

reference_url

https://www.debian.org/security/2023/dsa-5383

reference_id

dsa-5383

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-02-14T19:29:27Z/

url

https://www.debian.org/security/2023/dsa-5383

reference_url

reference_id

GLSA-202309-03

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-02-14T19:29:27Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MADLP3GWJFLLFVNZGEDNPMDQR6CCXAHN/

reference_url

reference_id

MADLP3GWJFLLFVNZGEDNPMDQR6CCXAHN

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-02-14T19:29:27Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MADLP3GWJFLLFVNZGEDNPMDQR6CCXAHN/

reference_url

https://lists.debian.org/debian-lts-announce/2023/04/msg00003.html

reference_id

msg00003.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-02-14T19:29:27Z/

url

https://lists.debian.org/debian-lts-announce/2023/04/msg00003.html

reference_url

https://ghostscript.readthedocs.io/en/latest/News.html

reference_id

News.html

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-02-14T19:29:27Z/

url

https://ghostscript.readthedocs.io/en/latest/News.html

reference_url

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=37ed5022cecd584de868933b5b60da2e995b3179

reference_id

?p=ghostpdl.git%3Ba=commit%3Bh=37ed5022cecd584de868933b5b60da2e995b3179

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-02-14T19:29:27Z/

url

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=37ed5022cecd584de868933b5b60da2e995b3179

reference_url	https://access.redhat.com/errata/RHSA-2023:6544
reference_id	RHSA-2023:6544
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6544

reference_url	https://access.redhat.com/errata/RHSA-2023:7053
reference_id	RHSA-2023:7053
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:7053

reference_url

https://bugs.ghostscript.com/show_bug.cgi?id=706494

reference_id

show_bug.cgi?id=706494

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2025-02-14T19:29:27Z/

url

https://bugs.ghostscript.com/show_bug.cgi?id=706494

reference_url	https://usn.ubuntu.com/6017-1/
reference_id	USN-6017-1
reference_type
scores
url	https://usn.ubuntu.com/6017-1/

reference_url	https://usn.ubuntu.com/6017-2/
reference_id	USN-6017-2
reference_type
scores
url	https://usn.ubuntu.com/6017-2/

fixed_packages

url	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u4?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u4?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u4%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.0.0~dfsg-11?distro=trixie
purl	pkg:deb/debian/ghostscript@10.0.0~dfsg-11?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2023-28879

risk_score 4.4

exploitability 0.5

weighted_severity 8.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-w3f3-7mug-rkba

143

url VCID-wsyg-pqpu-jfem

vulnerability_id VCID-wsyg-pqpu-jfem

summary Untrusted search path vulnerability in Ghostscript 8.62 allows local users to execute arbitrary PostScript code via a Trojan horse Postscript library file in Encoding/ under the current working directory, a different vulnerability than CVE-2010-2055.

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4820.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2010-4820.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2010-4820

reference_id

reference_type

scores

value	0.00111
scoring_system	epss
scoring_elements	0.29093
published_at	2026-06-04T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29164
published_at	2026-06-05T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.2913
published_at	2026-06-06T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29096
published_at	2026-06-07T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29063
published_at	2026-06-08T12:55:00Z

value	0.00111
scoring_system	epss
scoring_elements	0.29075
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2010-4820

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4820
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4820

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=771853
reference_id	771853
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=771853

reference_url	https://access.redhat.com/errata/RHSA-2012:0095
reference_id	RHSA-2012:0095
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0095

reference_url	https://access.redhat.com/errata/RHSA-2012:0096
reference_id	RHSA-2012:0096
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2012:0096

fixed_packages

url	pkg:deb/debian/ghostscript@8.71~dfsg2-6.1?distro=trixie
purl	pkg:deb/debian/ghostscript@8.71~dfsg2-6.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.71~dfsg2-6.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2010-4820

risk_score null

exploitability 0.5

weighted_severity 0.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wsyg-pqpu-jfem

144

url VCID-wvxf-a6gy-9uhv

vulnerability_id VCID-wvxf-a6gy-9uhv

summary In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use incorrect free logic in pagedevice replacement to crash the interpreter.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16541.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16541.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16541

reference_id

reference_type

scores

value	0.00454
scoring_system	epss
scoring_elements	0.64137
published_at	2026-06-04T12:55:00Z

value	0.00454
scoring_system	epss
scoring_elements	0.64181
published_at	2026-06-05T12:55:00Z

value	0.00454
scoring_system	epss
scoring_elements	0.64189
published_at	2026-06-06T12:55:00Z

value	0.00454
scoring_system	epss
scoring_elements	0.64178
published_at	2026-06-07T12:55:00Z

value	0.00454
scoring_system	epss
scoring_elements	0.64165
published_at	2026-06-08T12:55:00Z

value	0.00454
scoring_system	epss
scoring_elements	0.64185
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1625846
reference_id	1625846
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1625846

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332
reference_id	907332
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://access.redhat.com/errata/RHSA-2018:3834
reference_id	RHSA-2018:3834
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:3834

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-3?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-3%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-16541

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wvxf-a6gy-9uhv

145

url VCID-ww9b-nehm-hbgd

vulnerability_id VCID-ww9b-nehm-hbgd

summary In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use insufficient interpreter stack-size checking during error handling to crash the interpreter.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16542.json

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-16542.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2018-16542

reference_id

reference_type

scores

value	0.00426
scoring_system	epss
scoring_elements	0.6258
published_at	2026-06-04T12:55:00Z

value	0.00426
scoring_system	epss
scoring_elements	0.62625
published_at	2026-06-05T12:55:00Z

value	0.00426
scoring_system	epss
scoring_elements	0.62609
published_at	2026-06-08T12:55:00Z

value	0.00426
scoring_system	epss
scoring_elements	0.62634
published_at	2026-06-06T12:55:00Z

value	0.00426
scoring_system	epss
scoring_elements	0.62623
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2018-16542

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15908

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15909

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15910

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15911

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16511

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16513

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16539

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16540

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16541

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16542

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16543

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16585

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1621363
reference_id	1621363
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1621363

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332
reference_id	907332
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907332

reference_url	https://security.gentoo.org/glsa/201811-12
reference_id	GLSA-201811-12
reference_type
scores
url	https://security.gentoo.org/glsa/201811-12

reference_url	https://access.redhat.com/errata/RHSA-2018:2918
reference_id	RHSA-2018:2918
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2018:2918

fixed_packages

url	pkg:deb/debian/ghostscript@9.22~dfsg-3?distro=trixie
purl	pkg:deb/debian/ghostscript@9.22~dfsg-3?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.22~dfsg-3%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2018-16542

risk_score 3.3

exploitability 0.5

weighted_severity 6.6

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ww9b-nehm-hbgd

146

url VCID-wxx6-hyxg-u3bc

vulnerability_id VCID-wxx6-hyxg-u3bc

summary Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently execute arbitrary code by leveraging type confusion in .initialize_dsc_parser.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7979.json

reference_id

reference_type

scores

value	5.8
scoring_system	cvssv3
scoring_elements	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2016-7979.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2016-7979

reference_id

reference_type

scores

value	0.03211
scoring_system	epss
scoring_elements	0.87267
published_at	2026-06-04T12:55:00Z

value	0.03211
scoring_system	epss
scoring_elements	0.87289
published_at	2026-06-05T12:55:00Z

value	0.03211
scoring_system	epss
scoring_elements	0.87287
published_at	2026-06-06T12:55:00Z

value	0.03211
scoring_system	epss
scoring_elements	0.87284
published_at	2026-06-07T12:55:00Z

value	0.03211
scoring_system	epss
scoring_elements	0.87281
published_at	2026-06-08T12:55:00Z

value	0.03211
scoring_system	epss
scoring_elements	0.87293
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2016-7979

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5653
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5653

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7976
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7976

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7977
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7977

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7978
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7978

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7979
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7979

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8602
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8602

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.1
scoring_system	cvssv2
scoring_elements	AV:N/AC:H/Au:N/C:P/I:P/A:P

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=1382305
reference_id	1382305
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=1382305

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=839846
reference_id	839846
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=839846

reference_url	https://security.gentoo.org/glsa/201702-31
reference_id	GLSA-201702-31
reference_type
scores
url	https://security.gentoo.org/glsa/201702-31

reference_url	https://access.redhat.com/errata/RHSA-2017:0013
reference_id	RHSA-2017:0013
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:0013

reference_url	https://access.redhat.com/errata/RHSA-2017:0014
reference_id	RHSA-2017:0014
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:0014

reference_url	https://usn.ubuntu.com/3148-1/
reference_id	USN-3148-1
reference_type
scores
url	https://usn.ubuntu.com/3148-1/

fixed_packages

url	pkg:deb/debian/ghostscript@9.19~dfsg-3.1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.19~dfsg-3.1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.19~dfsg-3.1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2016-7979

risk_score 2.6

exploitability 0.5

weighted_severity 5.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wxx6-hyxg-u3bc

147

url VCID-x5u3-1hv5-rydu

vulnerability_id VCID-x5u3-1hv5-rydu

summary Ghostscript GhostPDL 9.50 through 9.54.0 has a heap-based buffer overflow in sampled_data_finish (called from sampled_data_continue and interp).

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-45949.json

reference_id

reference_type

scores

value	5.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2021-45949.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2021-45949

reference_id

reference_type

scores

value	0.00068
scoring_system	epss
scoring_elements	0.21069
published_at	2026-06-04T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.21152
published_at	2026-06-05T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.21139
published_at	2026-06-06T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.21094
published_at	2026-06-07T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.2103
published_at	2026-06-08T12:55:00Z

value	0.00068
scoring_system	epss
scoring_elements	0.21041
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2021-45949

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45944
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45944

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45949
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45949

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.2
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2048939
reference_id	2048939
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2048939

reference_url	https://usn.ubuntu.com/5224-1/
reference_id	USN-5224-1
reference_type
scores
url	https://usn.ubuntu.com/5224-1/

reference_url	https://usn.ubuntu.com/5224-2/
reference_id	USN-5224-2
reference_type
scores
url	https://usn.ubuntu.com/5224-2/

fixed_packages

url	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u2?distro=trixie
purl	pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u2%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@9.55.0~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@9.55.0~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.55.0~dfsg-1%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2021-45949

risk_score 2.5

exploitability 0.5

weighted_severity 5.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x5u3-1hv5-rydu

148

url VCID-x7n6-pzrs-nugs

vulnerability_id VCID-x7n6-pzrs-nugs

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3560.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2009-3560.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2009-3560

reference_id

reference_type

scores

value	0.03008
scoring_system	epss
scoring_elements	0.86857
published_at	2026-06-06T12:55:00Z

value	0.03008
scoring_system	epss
scoring_elements	0.86837
published_at	2026-06-04T12:55:00Z

value	0.03008
scoring_system	epss
scoring_elements	0.8686
published_at	2026-06-05T12:55:00Z

value	0.03008
scoring_system	epss
scoring_elements	0.86856
published_at	2026-06-09T12:55:00Z

value	0.03008
scoring_system	epss
scoring_elements	0.86854
published_at	2026-06-07T12:55:00Z

value	0.03008
scoring_system	epss
scoring_elements	0.86844
published_at	2026-06-08T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2009-3560

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3560
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3560

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=533174
reference_id	533174
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=533174

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560901
reference_id	560901
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560901

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560919
reference_id	560919
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560919

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560920
reference_id	560920
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560920

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560921
reference_id	560921
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560921

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560922
reference_id	560922
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560922

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560926
reference_id	560926
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560926

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560927
reference_id	560927
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560927

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560928
reference_id	560928
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560928

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560929
reference_id	560929
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560929

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560930
reference_id	560930
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560930

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560935
reference_id	560935
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560935

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560936
reference_id	560936
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560936

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560937
reference_id	560937
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560937

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560940
reference_id	560940
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560940

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560942
reference_id	560942
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560942

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=601053
reference_id	601053
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=601053

reference_url

https://httpd.apache.org/security/json/CVE-2009-3560.json

reference_id

CVE-2009-3560

reference_type

scores

value	low
scoring_system	apache_httpd
scoring_elements

url

https://httpd.apache.org/security/json/CVE-2009-3560.json

reference_url	https://security.gentoo.org/glsa/201209-06
reference_id	GLSA-201209-06
reference_type
scores
url	https://security.gentoo.org/glsa/201209-06

reference_url	https://access.redhat.com/errata/RHSA-2009:1625
reference_id	RHSA-2009:1625
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2009:1625

reference_url	https://access.redhat.com/errata/RHSA-2017:3239
reference_id	RHSA-2017:3239
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2017:3239

reference_url	https://usn.ubuntu.com/890-1/
reference_id	USN-890-1
reference_type
scores
url	https://usn.ubuntu.com/890-1/

reference_url	https://usn.ubuntu.com/890-2/
reference_id	USN-890-2
reference_type
scores
url	https://usn.ubuntu.com/890-2/

reference_url	https://usn.ubuntu.com/890-3/
reference_id	USN-890-3
reference_type
scores
url	https://usn.ubuntu.com/890-3/

reference_url	https://usn.ubuntu.com/890-4/
reference_id	USN-890-4
reference_type
scores
url	https://usn.ubuntu.com/890-4/

reference_url	https://usn.ubuntu.com/890-5/
reference_id	USN-890-5
reference_type
scores
url	https://usn.ubuntu.com/890-5/

reference_url	https://usn.ubuntu.com/890-6/
reference_id	USN-890-6
reference_type
scores
url	https://usn.ubuntu.com/890-6/

fixed_packages

url	pkg:deb/debian/ghostscript@8.71~dfsg-2?distro=trixie
purl	pkg:deb/debian/ghostscript@8.71~dfsg-2?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@8.71~dfsg-2%3Fdistro=trixie

url pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

purl pkg:deb/debian/ghostscript@9.53.3~dfsg-7%2Bdeb11u7?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

vulnerability	VCID-s49w-4m43-1fcb

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@9.53.3~dfsg-7%252Bdeb11u7%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

purl pkg:deb/debian/ghostscript@10.0.0~dfsg-11%2Bdeb12u8?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-3bxh-1wn9-9baa

vulnerability	VCID-79h4-1vr5-7fbz

vulnerability	VCID-fm18-2c57-yyav

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.0.0~dfsg-11%252Bdeb12u8%3Fdistro=trixie

url pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

purl pkg:deb/debian/ghostscript@10.05.1~dfsg-1%2Bdeb13u1?distro=trixie

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-1gnq-h48d-kkb7

vulnerability	VCID-ph56-3bx6-u7bj

resource_url http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.05.1~dfsg-1%252Bdeb13u1%3Fdistro=trixie

url	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
purl	pkg:deb/debian/ghostscript@10.07.1~dfsg-1?distro=trixie
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:deb/debian/ghostscript@10.07.1~dfsg-1%3Fdistro=trixie

aliases CVE-2009-3560

risk_score 1.1

exploitability 0.5

weighted_severity 2.1

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-x7n6-pzrs-nugs

149

url VCID-xjzq-ddbr-uudk

vulnerability_id VCID-xjzq-ddbr-uudk

summary multiple issues

references

reference_url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3522.json
reference_id
reference_type
scores
url	https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2008-3522.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2008-3522

reference_id

reference_type

scores

value	0.0425
scoring_system	epss
scoring_elements	0.88991
published_at	2026-06-04T12:55:00Z

value	0.0425
scoring_system	epss
scoring_elements	0.89008
published_at	2026-06-08T12:55:00Z

value	0.0425
scoring_system	epss
scoring_elements	0.89009
published_at	2026-06-06T12:55:00Z

value	0.0425
scoring_system	epss
scoring_elements	0.89024
published_at	2026-06-09T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2008-3522

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3522
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3522

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=461478
reference_id	461478
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=461478

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559778
reference_id	559778
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=559778

reference_url

reference_id

AVG-99

reference_type

scores

value	Critical
scoring_system	archlinux
scoring_elements

url