QwikSec

Security Database

CVE

CWE

Training

CVE-2019-14869

Published: Nov 15, 2019

Modified: Aug 5, 2024

PUBLISHED

CVSS v3.0

7.3

HIGH

Description

A flaw was found in all versions of ghostscript 9.x before 9.50, where the `.charkeys` procedure, where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. An attacker could abuse this flaw by creating a specially crafted PostScript file that could escalate privileges within the Ghostscript and access files outside of restricted areas or execute commands.

Vendor	Product	Versions
Ghostscript	ghostscript	affected `all versions of ghostscript 9.x before 9.28`

Weaknesses (CWE)

CVSS v3.0 Details

CVSS v3.0 Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

Low

Availability

Low

References

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14869

x_refsource_CONFIRM

[oss-security] 20191115 CVE-2019-14869 ghostscript: -dSAFER escape in .charkeys

mailing-list

x_refsource_MLIST

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commitdiff%3Bh=485904772c5f

x_refsource_CONFIRM

https://bugs.ghostscript.com/show_bug.cgi?id=701841

x_refsource_CONFIRM

FEDORA-2019-17f42f585a

vendor-advisory

x_refsource_FEDORA

20191118 [SECURITY] [DSA 4569-1] ghostscript security update

mailing-list

x_refsource_BUGTRAQ

FEDORA-2019-6cdb10aa59

vendor-advisory

x_refsource_FEDORA

openSUSE-SU-2019:2534

vendor-advisory

x_refsource_SUSE

openSUSE-SU-2019:2535

vendor-advisory

x_refsource_SUSE

FEDORA-2019-7debdd1807

vendor-advisory

x_refsource_FEDORA

vendor-advisory

x_refsource_REDHAT

third-party-advisory

x_refsource_JVN

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.