Published:2020/02/05 Last Updated:2020/02/13
JVN#52486659
Ghostscript access restriction bypass vulnerability
Overview
Ghostscript contains an access restriction bypass vulnerability.
Products Affected
- Ghostscript 9.27 and earlier
Description
Ghostscript provided by Artifex Software Inc. contains an access restriction bypass vulnerability (CWE-284).
Impact
By Ghostscript processing a specially crafted file, arbitrary command may be executed with the privilege of Ghostscript.
Solution
Update the Software
Update the software according to the information provided by the developer.
According to developer, this vulnerability was addressed in Ghostscript 9.50.
Vendor Status
| Vendor | Link |
| Artifex Software, Inc. | Ghostscript - Artifex |
| openSUSE | ghostscript - openSUSE |
| [security-announce] openSUSE-SU-2019:2534-1: important: Security update | |
| [security-announce] openSUSE-SU-2019:2535-1: important: Security update | |
| Canonical Ltd. | USN-4193-1: Ghostscript vulnerability | Ubuntu security notices |
| The Debian Project | Debian -- Security Information -- DSA-4569-1 ghostscript |
JPCERT/CC Addendum
Vulnerability Analysis by JPCERT/CC
CVSS v3
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score:
7.8
| Attack Vector(AV) | Physical (P) | Local (L) | Adjacent (A) | Network (N) |
|---|---|---|---|---|
| Attack Complexity(AC) | High (H) | Low (L) | ||
| Privileges Required(PR) | High (H) | Low (L) | None (N) | |
| User Interaction(UI) | Required (R) | None (N) | ||
| Scope(S) | Unchanged (U) | Changed (C) | ||
| Confidentiality Impact(C) | None (N) | Low (L) | High (H) | |
| Integrity Impact(I) | None (N) | Low (L) | High (H) | |
| Availability Impact(A) | None (N) | Low (L) | High (H) |
CVSS v2
AV:N/AC:M/Au:N/C:P/I:P/A:P
Base Score:
6.8
| Access Vector(AV) | Local (L) | Adjacent Network (A) | Network (N) |
|---|---|---|---|
| Access Complexity(AC) | High (H) | Medium (M) | Low (L) |
| Authentication(Au) | Multiple (M) | Single (S) | None (N) |
| Confidentiality Impact(C) | None (N) | Partial (P) | Complete (C) |
| Integrity Impact(I) | None (N) | Partial (P) | Complete (C) |
| Availability Impact(A) | None (N) | Partial (P) | Complete (C) |
Credit
Hiroki MATSUKUMA of Cyber Defense Institute, Inc. reported this vulnerability to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
Other Information
| JPCERT Alert |
|
| JPCERT Reports |
|
| CERT Advisory |
|
| CPNI Advisory |
|
| TRnotes |
|
| CVE |
CVE-2019-14869 |
| JVN iPedia |
JVNDB-2019-012236 |
Update History
- 2020/02/13
- Information under [Vendor Status] was updated