CRITICAL🇵🇱 Wersja polska

CVE-2025-27837

CVSS 9.8v3.1pub. 2025-03-25upd. 2025-04-01

An issue was discovered in Artifex Ghostscript before 10.05.0. Access to arbitrary files can occur through a truncated path with invalid UTF-8 characters, for base/gp_mswin.c and base/winrtsup.cpp.

🤖 AI Analysis
How it works

The vulnerability (CWE-22) exists in files base/gp_mswin.c and base/winrtsup.cpp responsible for file path handling on Windows platform. An attacker can provide a specially crafted path containing improper UTF-8 characters combined with path truncation, which causes improper validation and sanitization by the application. As a result, security mechanisms restricting file access are bypassed, and the application gains access to files outside the intended directory.

Impact

A remote, unauthenticated attacker can gain read access and potential modification of any files in the operating system, which may lead to disclosure of sensitive data, privilege escalation, or further compromise of system integrity.

Mitigation & patch

Artifex Ghostscript should be updated to version 10.05.0 or later. Details available in vendor references: https://bugs.ghostscript.com/show_bug.cgi?id=708238

Who is affected

Artifex Ghostscript in all versions before 10.05.0, affects Windows handling components (base/gp_mswin.c and base/winrtsup.cpp)

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Artifex Ghostscript

    APP
    Artifex
    < 10.05.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Path Traversal
CWE
References

Related vulnerabilities

CVE-2025-27836CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w urządzeniu BJ10V w Artifex Ghostscript

CVE-2025-27831CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w Artifex Ghostscript — urządzenie DOCXWRITE/TXTWRITE

CVE-2025-27832CRITICAL9.8PL ✓ten sam produkt

Buffer overflow w urządzeniu NPDL Artifex Ghostscript (kompresja)

CVE-2020-36773CRITICAL9.8PL ✓ten sam produkt

Artifex Ghostscript — out-of-bounds write i use-after-free w obsłudze txtwrite

CVE-2023-28879CRITICAL9.8ten sam produkt

In Artifex Ghostscript through 10.01.0, there is a buffer overflow leading to potential corruption of data int...