CVE Details: CVE-2024-29508

Description

Artifex Ghostscript before 10.03.0 has a heap-based pointer disclosure (observable in a constructed BaseFont name) in the function pdf_base_font_alloc.

Published Date: 2024-07-03
Last Modified Date: 2024-08-02
Severity: LOW
CVSS v3 Score: 3.3
CWE ID: NVD-CWE-noinfo
Attack Vector: LOCAL
Attack Complexity: LOW
Privileges Required: LOW
User Interaction: NONE
Scope: UNCHANGED
Confidentiality Impact: LOW
Integrity Impact: NONE
Availability Impact: NONE

Back to CVE List