CVE-2024-29510

Artifex Ghostscript before 10.03.1 allows memory corruption, and SAFER sandbox bypass, via format string injection with a uniprint device.

Published Date :

Last Modified :

Source :

The following products are affected by CVE-2024-29510 vulnerability.

Vendors	Products
Artifex	Ghostscript
Redhat	Enterprise Linux Rhel Eus

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-29510.

URL	Resource
https://bugs.ghostscript.com/show_bug.cgi?id=707662
https://codeanlabs.com/blog/research/cve-2024-29510-ghostscript-format-string-exploitation/
https://nvd.nist.gov/vuln/detail/CVE-2024-29510
https://www.cve.org/CVERecord?id=CVE-2024-29510
https://www.openwall.com/lists/oss-security/2024/07/03/7
https://www.vicarius.io/vsociety/posts/critical-vulnerability-in-ghostscript-cve-2024-29510

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact