Artifex » Afpl Ghostscript : Security Vulnerabilities, CVEs, Published In 2017 (Information Leak)
The getenv and filenameforall functions in Ghostscript 9.10 ignore the "-dSAFER" argument, which allows remote attackers to read data via a crafted postscript file.
Max CVSS
5.5
EPSS Score
0.38%
Published
2017-03-07
Updated
2018-01-05
1 vulnerabilities found