Base Score

MEDIUM6.3

CVE-2018-18073

Artifex Ghostscript allows attackers to bypass a sandbox protection mechanism by leveraging exposure of system operators in the saved execution stack in an error object.

VectorLOCAL

Published Bycve@mitre.org

Published DateOct 15, 2018, 16:29

Weakness Type (CWE):CWE-200

CVSS Metrics

Base Score

6.3

Vector String

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

Base Severity

MEDIUM

Version

3.1

Attack Vector (AV)

LOCAL

Attack Complexity (AC)

LOW

Privileges Required (PR)

NONE

User Interaction (UI)

REQUIRED

Scope (S)

CHANGED

Confidentiality (C)

HIGH

Integrity (I)

NONE

Availability (A)

NONE

References

http://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=34cc326eb2c5695833361887fe0b32e8d987741c
http://packetstormsecurity.com/files/149758/Ghostscript-Exposed-System-Operators.html
http://www.openwall.com/lists/oss-security/2018/10/10/12
https://access.redhat.com/errata/RHSA-2018:3834
https://bugs.chromium.org/p/project-zero/issues/detail?id=1690
https://bugs.ghostscript.com/show_bug.cgi?id=699927
https://lists.debian.org/debian-lts-announce/2018/10/msg00013.html
https://usn.ubuntu.com/3803-1/
https://www.debian.org/security/2018/dsa-4336

Base Score

MEDIUM6.3

Weakness Type (CWE):CWE-200

CVSS Metrics

Base Score

6.3

Vector String

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N

Base Severity

MEDIUM

Version

3.1

Attack Vector (AV)

LOCAL

Attack Complexity (AC)

LOW

Privileges Required (PR)

NONE

User Interaction (UI)

REQUIRED

Scope (S)

CHANGED

Confidentiality (C)

HIGH

Integrity (I)

NONE

Availability (A)

NONE