Detections
Analytics
NewStart CGSL MAIN 7.02 : ghostscript Multiple Vulnerabilities (NS-SA-2025-0121)
high Nessus Plugin ID 242730
Synopsis
The remote NewStart CGSL host is affected by multiple vulnerabilities.Description
The remote NewStart CGSL host, running version MAIN 7.02, has ghostscript packages installed that are affected by multiple vulnerabilities:- Artifex Ghostscript before 10.03.0 has a heap-based overflow when PDFPassword (e.g., for runpdf) has a \000 byte in the middle. (CVE-2024-29509)
- Artifex Ghostscript through 10.01.2 mishandles permission validation for pipe devices (with the %pipe% prefix or the | pipe character prefix). (CVE-2023-36664)
- A buffer overflow flaw was found in base/gdevdevn.c:1973 in devn_pcx_write_rle() in ghostscript. This issue may allow a local attacker to cause a denial of service via outputting a crafted PDF file for a DEVN device with gs. (CVE-2023-38559)
- IN THE EXTENSION SCRIPT, a SQL Injection vulnerability was found in PostgreSQL if it uses @extowner@, @extschema@, or @extschema:...@ inside a quoting construct (dollar quoting, '', or ). If an administrator has installed files of a vulnerable, trusted, non-bundled extension, an attacker with database-level CREATE privilege can execute arbitrary code as the bootstrap superuser. (CVE-2023-39417)
- A vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security policies defined for UPDATE and SELECT. If UPDATE and SELECT policies forbid some rows that INSERT policies do not forbid, a user could store such rows. (CVE-2023-39418)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Upgrade the vulnerable CGSL ghostscript packages. Note that updated packages may not be available yet. Please contact ZTE for more information.See Also
https://security.gd-linux.com/notice/NS-SA-2025-0121
https://security.gd-linux.com/info/CVE-2023-36664
https://security.gd-linux.com/info/CVE-2023-38559
https://security.gd-linux.com/info/CVE-2023-39417
https://security.gd-linux.com/info/CVE-2023-39418
https://security.gd-linux.com/info/CVE-2023-43115
https://security.gd-linux.com/info/CVE-2024-29509
https://security.gd-linux.com/info/CVE-2024-29510
https://security.gd-linux.com/info/CVE-2024-33869
https://security.gd-linux.com/info/CVE-2024-33870
https://security.gd-linux.com/info/CVE-2024-33871
https://security.gd-linux.com/info/CVE-2024-46951
https://security.gd-linux.com/info/CVE-2024-46952
https://security.gd-linux.com/info/CVE-2024-46953
Plugin Details
Severity: High
ID: 242730
File Name: newstart_cgsl_NS-SA-2025-0121_ghostscript.nasl
Version: 1.1
Type: local
Published: 7/25/2025
Updated: 7/25/2025
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: High
Score: 7.7
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 8.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2024-29509
CVSS v3
Risk Factor: High
Base Score: 8.8
Temporal Score: 8.4
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:zte:cgsl_main:ghostscript-tools-printing, p-cpe:/a:zte:cgsl_main:ghostscript-tools-fonts, p-cpe:/a:zte:cgsl_main:ghostscript, cpe:/o:zte:cgsl_main:7, p-cpe:/a:zte:cgsl_main:libgs
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/ZTE-CGSL/release, Host/ZTE-CGSL/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 7/25/2025
Vulnerability Publication Date: 6/25/2023
Reference Information
CVE: CVE-2023-36664, CVE-2023-38559, CVE-2023-39417, CVE-2023-39418, CVE-2023-43115, CVE-2024-29509, CVE-2024-29510, CVE-2024-33869, CVE-2024-33870, CVE-2024-33871, CVE-2024-46951, CVE-2024-46952, CVE-2024-46953, CVE-2024-46954, CVE-2024-46956
IAVB: 2023-B-0041-S, 2023-B-0070-S, 2024-B-0074-S, 2024-B-0170-S