
Find real vulnerabilities before they ship
Ghostscript before 9.21 might allow remote attackers to bypass the SAFER mode protection mechanism and consequently execute arbitrary code by leveraging type confusion in .initialize_dsc_parser.
Base Score
9.8| Base Score | 9.8 |
|---|---|
| Vector String | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| Base Severity | Critical |
| Version | 3.0 |
| Attack Vector (AV) | NETWORK |