Home

CVE-2021-3781

Description

A trivial sandbox (enabled with the -dSAFER option) escape flaw was found in the ghostscript interpreter by injecting a specially crafted pipe command. This flaw allows a specially crafted document to execute arbitrary commands on the system in the context of the ghostscript interpreter. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Risk Information

Base Score
9.9
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS Score
Exploitation Probability
9.269

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in Ghostscript 9.50Windows
Vulnerabilities CVE-2020-15900,CVE-2021-3781 are affected in Ghostscript 9.52Windows
Vulnerabilities CVE-2021-3781 are affected in Ghostscript 9.53.3Windows
Vulnerabilities CVE-2021-3781 are affected in Ghostscript 9.54.0Windows
PostScript and PDF interpreter (USN-5075-1) libgs9_9.50~dfsg-5ubuntu4.3_i386.debLinux
PostScript and PDF interpreter (USN-5075-1) libgs9_9.50~dfsg-5ubuntu4.3_amd64.debLinux
PostScript and PDF interpreter (USN-5075-1) libgs9_9.53.3~dfsg-7ubuntu0.1_i386.debLinux
PostScript and PDF interpreter (USN-5075-1) libgs9_9.53.3~dfsg-7ubuntu0.1_amd64.debLinux
PostScript and PDF interpreter (USN-5075-1) ghostscript_9.50~dfsg-5ubuntu4.3_i386.debLinux
PostScript and PDF interpreter (USN-5075-1) ghostscript_9.50~dfsg-5ubuntu4.3_amd64.debLinux
PostScript and PDF interpreter (USN-5075-1) ghostscript_9.53.3~dfsg-7ubuntu0.1_i386.debLinux
PostScript and PDF interpreter (USN-5075-1) ghostscript_9.53.3~dfsg-7ubuntu0.1_amd64.debLinux
SUSE-SU-2021:3180-1(SUSE Linux Enterprise Server 12-SP5 ) libspectre-debugsource-0.2.7-12.12.1.x86_64.rpmLinux
SUSE-SU-2021:3180-1(SUSE Linux Enterprise Server 12-SP5 ) libspectre-devel-0.2.7-12.12.1.x86_64.rpmLinux
SUSE-SU-2021:3180-1(SUSE Linux Enterprise Server 12-SP5 ) libspectre1-0.2.7-12.12.1.x86_64.rpmLinux
SUSE-SU-2021:3180-1(SUSE Linux Enterprise Server 12-SP5 ) libspectre1-debuginfo-0.2.7-12.12.1.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234