Unrated severityNVD Advisory· Published Mar 25, 2025· Updated Mar 26, 2025
CVE-2025-27837
CVE-2025-27837
Description
An issue was discovered in Artifex Ghostscript before 10.05.0. Access to arbitrary files can occur through a truncated path with invalid UTF-8 characters, for base/gp_mswin.c and base/winrtsup.cpp.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
8- Range: <10.05.0
- osv-coords7 versionspkg:deb/ubuntu/ghostscript@10.02.1~dfsg1-0ubuntu7.4?arch=source&distro=noblepkg:deb/ubuntu/ghostscript@10.03.1~dfsg1-0ubuntu2.1?arch=source&distro=oracularpkg:deb/ubuntu/ghostscript@9.26~dfsg+0-0ubuntu0.16.04.14+esm8?arch=source&distro=esm-infra/xenialpkg:deb/ubuntu/ghostscript@9.26~dfsg+0-0ubuntu0.18.04.18+esm3?arch=source&distro=esm-infra/bionicpkg:deb/ubuntu/ghostscript@9.50~dfsg-5ubuntu4.14?arch=source&distro=focalpkg:deb/ubuntu/ghostscript@9.55.0~dfsg1-0ubuntu5.10?arch=source&distro=jammypkg:rpm/opensuse/ghostscript&distro=openSUSE%20Tumbleweed
>= 0+ 6 more
- (no CPE)range: >= 0
- (no CPE)range: >= 0
- (no CPE)range: >= 0
- (no CPE)range: >= 0
- (no CPE)range: >= 0
- (no CPE)range: >= 0
- (no CPE)range: < 10.05.0-1.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.