CVE-2024-46951

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 10, 2024
Updated: Nov 14, 2024
CWE ID 824

Summary

CVE-2024-46951 is a vulnerability affecting Artifex Ghostscript before version 10.04.0. This issue resides in the psi/zcolor.c file and involves an unchecked Implementation pointer in the Pattern color space. If exploited, this flaw could allow an attacker to execute arbitrary code, posing a significant security risk. Users are encouraged to update to a patched version of Ghostscript to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • SUSE Linux Enterprise Server
  • GhostScript
  • Debian

Affected Vendors

  • Debian
  • SUSE Linux GmbH
  • Artifex