CVE-2016-10219

Advisory lineage Upstream: 0 Downstream: 9
Modified
Published: 03 Apr 2017, 05:44
Last modified:06 Aug 2024, 03:14

Vulnerability Summary

Overall Risk (default)
medium
32/100
CVSS Score
5.5 MEDIUM
v3.0 (nvd)
EPSS Score
0.58% LOW
1% probability -0.39%
KEV
Not listed
Ransomware
No reports
Public exploits
1 found
Dark Web
Not detected

Timeline

03 Apr 2017, 05:44
Published
Vulnerability first disclosed
06 Aug 2024, 03:14
Last Modified
Vulnerability information updated

Description

The intersect function in base/gxfill.c in Artifex Software, Inc. Ghostscript 9.20 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.

CVSS Metrics

  • v3.0MEDIUMScore: 5.5CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
  • v2.0MEDIUMScore: 4.3AV:N/AC:M/Au:N/C:N/I:N/A:P

EPSS Trends

Current EPSS score: 0.58% Percentile: 69%

Techniques & Countermeasures

  • CWE-369Divide By Zero

    The product divides a value by zero.

Affected Systems

  • UnknownGhostscript

    9.20

References (4)