CVE-2021-3781

A trivial sandbox (enabled with the -dSAFER option) escape flaw was found in the ghostscript interpreter by injecting a specially crafted pipe command. This flaw allows a specially crafted document to execute arbitrary commands on the system in the context of the ghostscript interpreter. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.

Published: Feb 16, 2022
Updated: Apr 14, 2023
CVE: CVE-2021-3781
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.9
AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-78
CWE-20

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
artifex / ghostscript	9.52	9.52.x
artifex / ghostscript	9.50	9.50.x
artifex / ghostscript	9.53.3	9.53.3.x
artifex / ghostscript	9.54.0	9.54.0.x
fedoraproject / fedora	34	34.x

https://bugzilla.redhat.com/show_bug.cgi?id=2002271
https://ghostscript.com/CVE-2021-3781.html
https://security.gentoo.org/glsa/202211-11

Vulnerability Database

289,599

CVE-2021-3781