CVE-2023-4042

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Aug 23, 2023
Updated: Dec 27, 2023
CWE ID 125
CWE ID 787

Summary

CVE-2023-4042 is a newly identified vulnerability in the ghostscript package used in Red Hat Enterprise Linux 8. Contrary to previous claims, the fix for a known issue (CVE-2020-16305) was not included in RHSA-2021:1852-06 advisory. This omission leaves affected systems vulnerable to the unpatched vulnerability, which poses a potential security risk. Ghostscript users on Red Hat Enterprise Linux 8 are advised to apply the appropriate patch as soon as possible to mitigate the threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • GhostScript
  • Red Hat Enterprise Linux
  • Redhat Enterprise Linux For Ibm Z Systems

Affected Vendors

  • Artifex
  • Red Hat