Remote Code Execution Risk in Artifex Ghostscript Products
CVE-2023-43115

8.8HIGH

Key Information:

Vendor: Artifex
Status: Ghostscript
Vendor: CVE Published:; 18 September 2023

Badges

👾 Exploit Exists🟡 Public PoC🟣 EPSS 23%

Summary

A vulnerability in Artifex Ghostscript allows for remote code execution through specially crafted PostScript documents. This issue arises from the ability to switch to the IJS device or modify the IjsServer parameter after the SAFER security mechanism has been activated. The configuration permits the IJS server to be specified via the command line, which could lead to the execution of arbitrary commands if exploited. Users of Ghostscript versions 10.01.2 and earlier are particularly at risk due to this flaw.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

ghostscript-CVE-2023-43115
Created by jostaub

References

https://ghostscript.com/

https://bugs.ghostscript.com/show_bug.cgi?id=707051

https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3B...

EPSS Score

23% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

🟡
Public PoC available
Sep 28, 2023
👾
Exploit known to exist
Sep 28, 2023
Vulnerability published
Sep 18, 2023
Vulnerability Reserved
Sep 18, 2023