CVE-2019-14813

Severity

75%

Complexity

99%

Confidentiality

106%

A flaw was found in ghostscript, versions 9.x before 9.50, in the setsystemparams procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A specially crafted PostScript file could disable security protection and then have access to the file system, or execute arbitrary commands.

CVSS 3.0 Base Score 9.8. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).

CVSS 2.0 Base Score 7.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P).

Overview

First reported 5 years ago

2019-09-06 14:15:00

Last updated 5 years ago

2019-11-18 21:15:00

Affected Software

Artifex Ghostscript

Red Hat Enterprise Linux (RHEL) 7.0 (7)

7.0

Red Hat Enterprise Linux 8.0

8.0

RedHat Enterprise Linux Desktop 7.0

7.0

RedHat Enterprise Linux Server 7.0

7.0

RedHat Enterprise Linux Workstation 7.0

7.0

References

http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=885444fcbe10dc42787ecb76686c8ee4dd33bf33

Mailing List, Vendor Advisory

openSUSE-SU-2019:2223

openSUSE-SU-2019:2222

RHBA-2019:2824

RHSA-2019:2594

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14813

Issue Tracking, Patch, Third Party Advisory

[debian-lts-announce] 20190909 [SECURITY] [DLA 1915-1] ghostscript security update

FEDORA-2019-ebd6c4f15a

FEDORA-2019-0a9d525d71

FEDORA-2019-953fc0f16d

20190910 [SECURITY] [DSA 4518-1] ghostscript security update

GLSA-202004-03

DSA-4518

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.