Null Pointer Dereference in Artifex GhostPDL Software
CVE-2025-7462

5.3MEDIUM

Key Information:

Vendor

Artifex
Status
Ghostpdl
Vendor
CVE Published:
12 July 2025

What is CVE-2025-7462?

A null pointer dereference vulnerability has been identified in Artifex GhostPDL, specifically affecting the 'pdf_ferror' function within the component responsible for handling output file errors. This vulnerability allows an attacker to manipulate the function remotely, potentially leading to severe disruptions or service interruptions. Users are strongly advised to apply the recommended patch to mitigate this risk.

Affected Version(s)

GhostPDL 3989415a5b8e99b9d1b87cc9902bde9b7cdea145

References

https://vuldb.com/?id.316113
vdb-entrytechnical-description
https://vuldb.com/?ctiid.316113
signaturepermissions-required
https://vuldb.com/?submit.610173
third-party-advisory

CVSS V4

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
Unknown

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

CyberGym (VulDB User)
.
CVE-2025-7462 : Null Pointer Dereference in Artifex GhostPDL Software