vulnerability

Artifex Ghostscript: (CVE-2016-7977) Remote File Disclosure

Severity
4
CVSS
(AV:N/AC:M/Au:N/C:P/I:N/A:N)
Published
May 23, 2017
Added
Oct 10, 2018
Modified
Nov 27, 2024

Description

Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently read arbitrary files via the use of the .libfile operator in a crafted postscript document.

Solution

ghostscript-upgrade-9_21
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.