[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2017-8291":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T20:55:33.689Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":19,"aliases":60,"duplicate_of":9,"upstream":61,"downstream":62,"duplicates":89,"related":90,"reserved_at":9,"published_at":97,"modified_at":98,"state":99,"summary":100,"references_raw":109,"kevs":171,"epss":182,"epss_history":185,"metrics":376,"affected":389},"CVE-2017-8291","Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via .rsdparams type confusion with a \"/OutputFile (%pipe%\" substring in a crafted .eps document that is an input to the gs program, as exploited in the wild in April 2017.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-843","Access of Resource Using Incompatible Type ('Type Confusion')","The product allocates or initializes a resource such as a pointer, object, or variable using one type, but it later accesses that resource using a type that is incompatible with the original type.","weakness","Incomplete","Base",[],[20,29,43],{"_key":21,"name":22,"source":23,"url":24,"maturity":25,"reliability_score":26,"verified":27,"type":9,"platforms":28,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_D81E96748A9F999F","Exploit Reference (bugzilla.suse.com)","reference","https://bugzilla.suse.com/show_bug.cgi?id=1036453","unknown",0.2,false,[],{"_key":30,"name":31,"source":32,"url":33,"maturity":34,"reliability_score":35,"verified":36,"type":37,"platforms":38,"requires_auth":9,"exploitdb":40,"metasploit":9},"41955","Ghostscript 9.21 - Type Confusion Arbitrary Command Execution (Metasploit)","exploit-database","https://www.exploit-db.com/exploits/41955","weaponized",0.8,true,"local",[39],"linux",{"verified":36,"type":37,"platform":39,"file":41,"codes":42},"exploits/linux/local/41955.rb",[7],{"_key":44,"name":45,"source":46,"url":47,"maturity":34,"reliability_score":48,"verified":36,"type":49,"platforms":50,"requires_auth":27,"exploitdb":9,"metasploit":51},"MSF_EXPLOIT_UNIX_FILEFORMAT_GHOSTSCRIPT_TYPE_CONFUSION","Ghostscript Type Confusion Arbitrary Command Execution","metasploit","https://github.com/rapid7/metasploit-framework/blob/master/modules/exploit/unix/fileformat/ghostscript_type_confusion.rb",1,"remote",[],{"fullname":52,"rank":53,"rank_name":54,"post_auth":27,"check":27,"notes":55},"exploit/unix/fileformat/ghostscript_type_confusion",600,"excellent",{"Stability":56,"SideEffects":58,"Reliability":59},[57],"crash-safe",[],[],[],[],[63,65,67,69,71,73,75,77,79,81,83,85,87],{"_key":64},"ALPINE-CVE-2017-8291",{"_key":66},"SUSE-SU-2017:1322-1",{"_key":68},"RHSA-2017:1230",{"_key":70},"SUSE-SU-2017:1138-1",{"_key":72},"SUSE-SU-2017:1153-1",{"_key":74},"SUSE-SU-2017:1404-1",{"_key":76},"OPENSUSE-SU-2024:10783-1",{"_key":78},"DLA-932-1",{"_key":80},"DSA-3838-1",{"_key":82},"MGASA-2017-0133",{"_key":84},"UBUNTU-CVE-2017-8291",{"_key":86},"USN-3272-1",{"_key":88},"DEBIAN-CVE-2017-8291",[],[91,92,93,94,95,96],{"_key":66},{"_key":70},{"_key":72},{"_key":74},{"_key":76},{"_key":82},"2017-04-27T01:41:00.000Z","2025-10-21T23:55:41.773Z","Analyzed",{"cisa_kev":36,"cisa_ransomware":27,"cisa_vendor":101,"epss_severity":102,"epss_score":103,"severity":104,"severity_score":105,"severity_version":106,"severity_source":107,"severity_vector":108,"severity_status":99},"Artifex","critical",0.92931,"high",7.8,"v3.1","cve.org","CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",[110,119,126,131,137,142,147,152,156,161,165],{"url":111,"sources":112,"tags":114},"http://www.debian.org/security/2017/dsa-3838",[107,113],"nvd",[115,116,117,118],"Vendor Advisory","X Refsource DEBIAN","Mailing List","Third Party Advisory",{"url":24,"sources":120,"tags":121},[107,113],[122,123,124,118,125],"X Refsource MISC","Exploit","Issue Tracking","VDB Entry",{"url":127,"sources":128,"tags":129},"https://access.redhat.com/errata/RHSA-2017:1230",[107,113],[115,130,118],"X Refsource REDHAT",{"url":132,"sources":133,"tags":134},"http://www.securityfocus.com/bid/98476",[107,113],[125,135,136,118],"X Refsource BID","Broken Link",{"url":138,"sources":139,"tags":140},"https://www.exploit-db.com/exploits/41955/",[107,113],[123,141,118,125],"X Refsource EXPLOIT DB",{"url":143,"sources":144,"tags":145},"http://openwall.com/lists/oss-security/2017/04/28/2",[107,113],[122,117,146,118],"Patch",{"url":148,"sources":149,"tags":150},"https://security.gentoo.org/glsa/201708-06",[107,113],[115,151,118],"X Refsource GENTOO",{"url":153,"sources":154,"tags":155},"https://bugzilla.redhat.com/show_bug.cgi?id=1446063",[107,113],[122,124,146,118,125],{"url":157,"sources":158,"tags":159},"https://git.ghostscript.com/?p=ghostpdl.git%3Ba=commit%3Bh=04b37bbce174eed24edec7ad5b920eb93db4d47d",[107,113],[160,136],"X Refsource CONFIRM",{"url":162,"sources":163,"tags":164},"https://bugs.ghostscript.com/show_bug.cgi?id=697808",[107,113],[122,124,118,125],{"url":166,"sources":167,"tags":168},"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-8291",[107,113],[169,170],"Government Resource","US Government Resource",[172],{"source":173,"vendor":101,"product":174,"date_added":175,"vulnerability_name":176,"short_description":177,"required_action":178,"due_date":179,"known_ransomware_campaign_use":180,"notes":181,"exploitation_type":9},"cisa","Ghostscript","2022-05-24","Artifex Ghostscript Type Confusion Vulnerability","Artifex Ghostscript allows -dSAFER bypass and remote command execution via .rsdparams type confusion with a \"/OutputFile.","Apply updates per vendor instructions.","2022-06-14","Unknown","https://nvd.nist.gov/vuln/detail/CVE-2017-8291",{"date":183,"score":103,"percentile":184},"2026-06-05",0.99783,[186,190,193,195,198,200,202,204,206,208,210,212,214,216,218,222,224,226,228,230,232,234,236,238,240,242,244,246,249,251,254,256,258,260,262,264,266,268,270,272,274,276,278,280,282,284,286,288,290,292,294,296,298,300,302,304,306,308,310,312,314,316,318,320,322,324,326,328,330,332,334,336,339,341,343,345,347,349,351,353,355,357,359,361,363,365,367,369,371,373],{"date":187,"score":188,"percentile":189},"2025-11-04",0.92862,0.99755,{"date":191,"score":188,"percentile":192},"2025-11-05",0.99756,{"date":194,"score":188,"percentile":192},"2025-11-06",{"date":196,"score":188,"percentile":197},"2025-11-07",0.99754,{"date":199,"score":188,"percentile":189},"2025-11-08",{"date":201,"score":188,"percentile":189},"2025-11-09",{"date":203,"score":188,"percentile":189},"2025-11-10",{"date":205,"score":188,"percentile":197},"2025-11-11",{"date":207,"score":188,"percentile":197},"2025-11-12",{"date":209,"score":188,"percentile":189},"2025-11-13",{"date":211,"score":188,"percentile":189},"2025-11-14",{"date":213,"score":188,"percentile":189},"2025-11-15",{"date":215,"score":188,"percentile":189},"2025-11-16",{"date":217,"score":188,"percentile":192},"2025-11-17",{"date":219,"score":220,"percentile":221},"2025-11-18",0.93467,0.99874,{"date":223,"score":220,"percentile":221},"2025-11-19",{"date":225,"score":220,"percentile":221},"2025-11-20",{"date":227,"score":188,"percentile":197},"2025-11-21",{"date":229,"score":188,"percentile":197},"2025-11-22",{"date":231,"score":188,"percentile":197},"2025-11-23",{"date":233,"score":188,"percentile":189},"2025-11-24",{"date":235,"score":188,"percentile":189},"2025-11-25",{"date":237,"score":188,"percentile":189},"2025-11-26",{"date":239,"score":188,"percentile":197},"2025-11-27",{"date":241,"score":188,"percentile":189},"2025-11-28",{"date":243,"score":188,"percentile":189},"2025-11-29",{"date":245,"score":188,"percentile":189},"2025-11-30",{"date":247,"score":188,"percentile":248},"2025-12-01",0.99759,{"date":250,"score":188,"percentile":248},"2025-12-02",{"date":252,"score":188,"percentile":253},"2025-12-03",0.9976,{"date":255,"score":188,"percentile":189},"2025-12-04",{"date":257,"score":188,"percentile":189},"2025-12-05",{"date":259,"score":188,"percentile":189},"2025-12-06",{"date":261,"score":188,"percentile":189},"2025-12-07",{"date":263,"score":188,"percentile":189},"2025-12-08",{"date":265,"score":188,"percentile":189},"2025-12-09",{"date":267,"score":188,"percentile":189},"2025-12-10",{"date":269,"score":188,"percentile":189},"2025-12-11",{"date":271,"score":188,"percentile":189},"2025-12-12",{"date":273,"score":188,"percentile":189},"2025-12-13",{"date":275,"score":188,"percentile":189},"2025-12-14",{"date":277,"score":188,"percentile":189},"2025-12-15",{"date":279,"score":188,"percentile":189},"2025-12-16",{"date":281,"score":188,"percentile":192},"2025-12-17",{"date":283,"score":188,"percentile":197},"2025-12-18",{"date":285,"score":188,"percentile":197},"2025-12-19",{"date":287,"score":188,"percentile":189},"2025-12-20",{"date":289,"score":188,"percentile":189},"2025-12-21",{"date":291,"score":188,"percentile":192},"2025-12-22",{"date":293,"score":188,"percentile":192},"2025-12-23",{"date":295,"score":188,"percentile":189},"2025-12-24",{"date":297,"score":188,"percentile":189},"2025-12-25",{"date":299,"score":188,"percentile":189},"2025-12-26",{"date":301,"score":188,"percentile":197},"2025-12-27",{"date":303,"score":188,"percentile":189},"2025-12-28",{"date":305,"score":188,"percentile":189},"2025-12-29",{"date":307,"score":188,"percentile":189},"2025-12-30",{"date":309,"score":188,"percentile":189},"2025-12-31",{"date":311,"score":188,"percentile":253},"2026-01-01",{"date":313,"score":188,"percentile":253},"2026-01-02",{"date":315,"score":188,"percentile":253},"2026-01-03",{"date":317,"score":188,"percentile":189},"2026-01-04",{"date":319,"score":188,"percentile":189},"2026-01-05",{"date":321,"score":188,"percentile":192},"2026-01-06",{"date":323,"score":188,"percentile":192},"2026-01-07",{"date":325,"score":188,"percentile":192},"2026-01-08",{"date":327,"score":188,"percentile":192},"2026-01-09",{"date":329,"score":188,"percentile":192},"2026-01-10",{"date":331,"score":188,"percentile":192},"2026-01-11",{"date":333,"score":188,"percentile":192},"2026-01-12",{"date":335,"score":188,"percentile":192},"2026-01-13",{"date":337,"score":188,"percentile":338},"2026-01-14",0.99757,{"date":340,"score":188,"percentile":338},"2026-01-15",{"date":342,"score":188,"percentile":338},"2026-01-16",{"date":344,"score":188,"percentile":338},"2026-01-17",{"date":346,"score":188,"percentile":338},"2026-01-18",{"date":348,"score":188,"percentile":338},"2026-01-19",{"date":350,"score":188,"percentile":338},"2026-01-20",{"date":352,"score":188,"percentile":338},"2026-01-21",{"date":354,"score":188,"percentile":338},"2026-01-22",{"date":356,"score":188,"percentile":338},"2026-01-23",{"date":358,"score":188,"percentile":338},"2026-01-24",{"date":360,"score":188,"percentile":338},"2026-01-25",{"date":362,"score":188,"percentile":192},"2026-01-26",{"date":364,"score":188,"percentile":192},"2026-01-27",{"date":366,"score":188,"percentile":338},"2026-01-28",{"date":368,"score":188,"percentile":338},"2026-01-29",{"date":370,"score":188,"percentile":338},"2026-01-30",{"date":372,"score":188,"percentile":338},"2026-01-31",{"date":374,"score":188,"percentile":375},"2026-02-01",0.99763,[377,382],{"source":107,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":378,"cvss_v4_0":9},{"baseScore":105,"baseSeverity":379,"vectorString":108,"impactScore":380,"exploitabilityScore":381},"HIGH",9.8,4.6,{"source":113,"cvss_v2_0":383,"cvss_v3_0":9,"cvss_v3_1":388,"cvss_v4_0":9},{"baseScore":384,"baseSeverity":9,"vectorString":385,"impactScore":386,"exploitabilityScore":387},6.8,"AV:N/AC:M/Au:N/C:P/I:P/A:P",6.4,8.6,{"baseScore":105,"baseSeverity":379,"vectorString":108,"impactScore":380,"exploitabilityScore":381},[390,397,405,414,428,434,442,449],{"ecosystem":9,"name":174,"vendor":9,"product":174,"cpe_part":9,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":391},[392],{"version":393,"is_range":36,"range_type":394,"version_start":9,"version_start_type":9,"version_end":395,"version_end_type":396,"fixed_in":9},"lt9.21","cpe","9.21","excluding",{"ecosystem":9,"name":398,"vendor":399,"product":400,"cpe_part":401,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":402},"debian linux","debian","debian_linux","o",[403],{"version":404,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0",{"ecosystem":9,"name":406,"vendor":407,"product":408,"cpe_part":401,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":409},"enterprise linux desktop","redhat","enterprise_linux_desktop",[410,412],{"version":411,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.0",{"version":413,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0",{"ecosystem":9,"name":415,"vendor":407,"product":416,"cpe_part":401,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":417},"enterprise linux eus","enterprise_linux_eus",[418,420,422,424,426],{"version":419,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.3",{"version":421,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.4",{"version":423,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.5",{"version":425,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.6",{"version":427,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.7",{"ecosystem":9,"name":429,"vendor":407,"product":430,"cpe_part":401,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":431},"enterprise linux server","enterprise_linux_server",[432,433],{"version":411,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":413,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":435,"vendor":407,"product":436,"cpe_part":401,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":437},"enterprise linux server aus","enterprise_linux_server_aus",[438,439,440,441],{"version":419,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":421,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":425,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":427,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":443,"vendor":407,"product":444,"cpe_part":401,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":445},"enterprise linux server tus","enterprise_linux_server_tus",[446,447,448],{"version":419,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":425,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":427,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":9,"name":450,"vendor":407,"product":451,"cpe_part":401,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":452},"enterprise linux workstation","enterprise_linux_workstation",[453,454],{"version":411,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"version":413,"is_range":27,"range_type":394,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9}]