CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2016-10317

The fill_threshhold_buffer function in base/gxht_thresh.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted PostScript document.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 75.8%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

http://www.securityfocus.com/bid/97410
https://bugs.ghostscript.com/show_bug.cgi?id=697459
https://usn.ubuntu.com/3636-1/
http://www.securityfocus.com/bid/97410
https://bugs.ghostscript.com/show_bug.cgi?id=697459
https://usn.ubuntu.com/3636-1/

Products affected by CVE-2016-10317

Artifex » Ghostscript » Version: 9.20

cpe:2.3:a:artifex:ghostscript:9.20

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-10317

Products

Pricing

Contact Us