CVE-2018-16539

MEDIUM

Artifex Ghostscript < 9.24 - Unauthorized File Read via Temp File Handling

Title source: llm

Description

In Artifex Ghostscript before 9.24, attackers able to supply crafted PostScript files could use incorrect access checking in temp file handling to disclose contents of files on the system otherwise not readable.

References (8)

Core 8

Core References

Third Party Advisory vendor-advisory x_refsource_redhat

https://access.redhat.com/errata/RHSA-2018:3650

Third Party Advisory vendor-advisory x_refsource_gentoo

https://security.gentoo.org/glsa/201811-12

Third Party Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/3768-1/

Patch, Vendor Advisory x_refsource_misc

https://www.artifex.com/news/ghostscript-security-resolved/

Third Party Advisory vendor-advisory x_refsource_debian

https://www.debian.org/security/2018/dsa-4288

Mailing List, Third Party Advisory mailing-list x_refsource_mlist

https://lists.debian.org/debian-lts-announce/2018/09/msg00015.html

Issue Tracking, Permissions Required, Vendor Advisory x_refsource_misc

https://bugs.ghostscript.com/show_bug.cgi?id=699658

Patch x_refsource_misc

http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=a054156d425b4dbdaaa9fda4b5f1182b27598c2b

Scores

CVSS v3 5.5

EPSS 0.0035

EPSS Percentile 57.7%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Details

CWE

CWE-200

Status published

Products (12)

artifex/ghostscript < 9.24

canonical/ubuntu_linux 14.04

canonical/ubuntu_linux 16.04

canonical/ubuntu_linux 18.04

debian/debian_linux 8.0

debian/debian_linux 9.0

redhat/enterprise_linux_desktop 7.0

redhat/enterprise_linux_server 7.0

redhat/enterprise_linux_server_aus 7.6

redhat/enterprise_linux_server_eus 7.6

... and 2 more

Published Sep 05, 2018

Tracked Since Feb 18, 2026