CVE-2017-15652: Infoleak
First published: Thu May 23 2019(Updated: )
Artifex Ghostscript 9.22 is affected by: Obtain Information. The impact is: obtain sensitive information. The component is: affected source code file, affected function, affected executable, affected libga (imagemagick used that). The attack vector is: Someone must open a postscript file though ghostscript. Because of imagemagick also use libga, so it was affected as well.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Artifex Ghostscript | =9.22 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Artifex Ghostscript vulnerability?
The vulnerability ID for this Artifex Ghostscript vulnerability is CVE-2017-15652.
What is the impact of this vulnerability?
The impact of this vulnerability is the ability to obtain sensitive information.
What is the affected version of Artifex Ghostscript?
The affected version of Artifex Ghostscript is 9.22.
How can someone exploit this vulnerability?
To exploit this vulnerability, an attacker must open a malicious postscript file through Ghostscript.
Are there any fixes or patches available for this vulnerability?
Yes, fixes and patches are available. It is recommended to update to a newer version of Artifex Ghostscript.
- collector/nvd-index
- vendor/artifex
- canonical/artifex ghostscript
- version/artifex ghostscript/9.22