Description

In Artifex Ghostscript before 10.05.0, decode_utf8 in base/gp_utf8.c mishandles overlong UTF-8 encoding. NOTE: this issue exists because of an incomplete fix for CVE-2024-46954.

INFO

Published Date :

2025-04-26T00:00:00.000Z

Last Modified :

2025-04-29T15:23:02.330Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2025-46646 vulnerability.

Vendors Products
Artifex
  • Ghostscript
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-46646.

URL Resource
https://bugs.ghostscript.com/show_bug.cgi?id=708311 cve-icon cve-icon cve-icon
https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=f14ea81e6c3d2f51593f23cdf13c4679a18f1a3f cve-icon cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-46646 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-46646 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact