CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-1350

A vulnerability classified as problematic was found in GhostPCL 9.55.0. This vulnerability affects the function chunk_free_object of the file gsmchunk.c. The manipulation with a malicious file leads to a memory corruption. The attack can be initiated remotely but requires user interaction. The exploit has been disclosed to the public as a POC and may be used. It is recommended to apply the patches to fix this issue.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.2%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 6.8

References

https://bugs.ghostscript.com/attachment.cgi?id=22323
https://bugs.ghostscript.com/show_bug.cgi?id=705156
https://vuldb.com/?id.197290
https://bugs.ghostscript.com/attachment.cgi?id=22323
https://bugs.ghostscript.com/show_bug.cgi?id=705156
https://vuldb.com/?id.197290

Products affected by CVE-2022-1350

Artifex » Ghostpcl » Version: 9.55.0

cpe:2.3:a:artifex:ghostpcl:9.55.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-1350

Products

Pricing

Contact Us