← back
CVE-2024-29510

CVE-2024-29510

CVSS 6.3 MEDIUMEPSS 28.0%CWE-693
Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://bugs.ghostscript.com/show_bug.cgi?id=707662https://codeanlabs.com/blog/research/cve-2024-29510-ghostscript-format-string-exploitation/https://www.openwall.com/lists/oss-security/2024/07/03/7https://www.vicarius.io/vsociety/posts/critical-vulnerability-in-ghostscript-cve-2024-29510