CVE-2019-6116

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

In Artifex Ghostscript through 9.26, ephemeral or transient procedures can allow access to system operators, leading to remote code execution.

References

http://lists.opensuse.org/opensuse-security-announce/2019-01/msg00047.html

http://lists.opensuse.org/opensuse-security-announce/2019-01/msg00048.html

http://packetstormsecurity.com/files/151307/Ghostscript-Pseudo-Operator-Remote-Code-Execution.html

http://packetstormsecurity.com/files/152367/Slackware-Security-Advisory-ghostscript-Updates.html

http://www.openwall.com/lists/oss-security/2019/01/23/5

http://www.openwall.com/lists/oss-security/2019/03/21/1

http://www.securityfocus.com/bid/106700

https://access.redhat.com/errata/RHBA-2019:0327

https://access.redhat.com/errata/RHSA-2019:0229

https://bugs.chromium.org/p/project-zero/issues/detail?id=1729

https://bugs.ghostscript.com/show_bug.cgi?id=700317

https://lists.debian.org/debian-lts-announce/2019/02/msg00016.html

https://lists.fedoraproject.org/archives/list/[email protected]/message/6AATIHU32MYKUOXQDJQU4X4DDVL7NAY3/

https://lists.fedoraproject.org/archives/list/[email protected]/message/7N6T5L3SSJX2AVUPHP7GCPATFWUPKZT2/

https://lists.fedoraproject.org/archives/list/[email protected]/message/MWVAVCDXBLPLJMVGNSKGGDTBEOHCJBKK/

https://lists.fedoraproject.org/archives/list/[email protected]/message/XVWXVKG72IGEJYHLWE6H3CGALHGFSGGY/

https://lists.fedoraproject.org/archives/list/[email protected]/message/ZP34D27RKYV2POJ3NJLSVCHUA5V5C45A/

https://seclists.org/bugtraq/2019/Apr/4

https://security.gentoo.org/glsa/202004-03

https://usn.ubuntu.com/3866-1/

https://www.debian.org/security/2019/dsa-4372

https://www.exploit-db.com/exploits/46242/

Details

Source: MITRE

Published: 2019-03-21

Updated: 2020-08-24

Risk Information

CVSS v2

Base Score: 6.8

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 8.6

Severity: MEDIUM

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.8

Severity: HIGH

Tenable Plugins

View all (26 total)

IDNameProductFamilySeverity
146633Amazon Linux 2 : ghostscript (ALAS-2021-1598)NessusAmazon Linux Local Security Checks
critical
135114GLSA-202004-03 : GPL Ghostscript: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
129423Fedora 29 : ghostscript (2019-ebd6c4f15a)NessusFedora Local Security Checks
critical
129323Fedora 30 : ghostscript (2019-953fc0f16d)NessusFedora Local Security Checks
critical
127241NewStart CGSL CORE 5.04 / MAIN 5.04 : ghostscript Multiple Vulnerabilities (NS-SA-2019-0054)NessusNewStart CGSL Local Security Checks
high
125565EulerOS Virtualization for ARM 64 3.0.2.0 : ghostscript (EulerOS-SA-2019-1613)NessusHuawei Local Security Checks
high
124704Scientific Linux Security Update : ghostscript on SL7.x x86_64 (20190507)NessusScientific Linux Local Security Checks
high
124523Fedora 30 : ghostscript (2019-9f06aa44f6)NessusFedora Local Security Checks
high
123722EulerOS Virtualization 2.5.3 : ghostscript (EulerOS-SA-2019-1254)NessusHuawei Local Security Checks
high
123649Slackware 14.2 / current : ghostscript (SSA:2019-092-01)NessusSlackware Local Security Checks
high
123584EulerOS 2.0 SP2 : ghostscript (EulerOS-SA-2019-1110)NessusHuawei Local Security Checks
high
123105EulerOS 2.0 SP3 : ghostscript (EulerOS-SA-2019-1092)NessusHuawei Local Security Checks
high
122982Fedora 28 : ghostscript (2019-7b9bb0e426)NessusFedora Local Security Checks
high
122979Fedora 29 : ghostscript (2019-15d57af79a)NessusFedora Local Security Checks
high
122688EulerOS 2.0 SP5 : ghostscript (EulerOS-SA-2019-1065)NessusHuawei Local Security Checks
high
122097Debian DLA-1670-1 : ghostscript security updateNessusDebian Local Security Checks
high
122061CentOS 7 : ghostscript (CESA-2019:0229)NessusCentOS Local Security Checks
high
121537openSUSE Security Update : ghostscript (openSUSE-2019-104)NessusSuSE Local Security Checks
high
121536openSUSE Security Update : ghostscript (openSUSE-2019-103)NessusSuSE Local Security Checks
high
121532Scientific Linux Security Update : ghostscript on SL7.x x86_64 (20190131)NessusScientific Linux Local Security Checks
high
121527RHEL 7 : ghostscript (RHSA-2019:0229)NessusRed Hat Local Security Checks
high
121523Oracle Linux 7 : ghostscript (ELSA-2019-0229)NessusOracle Linux Local Security Checks
high
121400Debian DSA-4372-1 : ghostscript - security updateNessusDebian Local Security Checks
high
121345Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 18.10 : Ghostscript vulnerability (USN-3866-1)NessusUbuntu Local Security Checks
high
121342SUSE SLED15 / SLES15 Security Update : ghostscript (SUSE-SU-2019:0145-1)NessusSuSE Local Security Checks
high
121341SUSE SLED12 / SLES12 Security Update : ghostscript (SUSE-SU-2019:0144-1)NessusSuSE Local Security Checks
high