{"id":"CVE-2024-33869","details":"An issue was discovered in Artifex Ghostscript before 10.03.1. Path traversal and command execution can occur (via a crafted PostScript document) because of path reduction in base/gpmisc.c. For example, restrictions on use of %pipe% can be bypassed via the aa/../%pipe%command# output filename.","modified":"2026-05-18T05:58:51.665334191Z","published":"2024-07-03T00:00:00Z","related":["ALSA-2024:6197","CGA-7h72-cw77-7p5v","SUSE-SU-2024:2276-1","SUSE-SU-2024:2292-1","openSUSE-SU-2024:14090-1"],"database_specific":{"unresolved_ranges":[{"source":"DESCRIPTION","extracted_events":[{"fixed":"10.03.1"}]}],"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/33xxx/CVE-2024-33869.json","cna_assigner":"mitre"},"references":[{"type":"WEB","url":"https://bugs.ghostscript.com/show_bug.cgi?id=707691"},{"type":"WEB","url":"https://www.openwall.com/lists/oss-security/2024/06/28/2"},{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/33xxx/CVE-2024-33869.json"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-33869"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/artifexsoftware/ghostpdl-downloads","events":[{"introduced":"0"},{"fixed":"865d8905b3fdb3a0fabe3628a67bad634cf88ba9"}],"database_specific":{"source":"CPE_FIELD","extracted_events":[{"introduced":"0"},{"fixed":"10.03.1"}],"cpe":"cpe:2.3:a:artifex:ghostscript:*:*:*:*:*:*:*:*"}}],"versions":["gs10030","gs10030rc1","gs10021","gs10020","gs10020rc2","gs10020rc1","gs10012","gs10010rc1","gs10011","gs1001","gs10010","gs10010rc2","gs1000","gs9561","gs1000rc2","gs10.0.0rc1","gs9560","gs9560rc2","gs9560rc1","gs9550","ghostpdl-9.55","gs9550rc1","gs9540","gpdf_beta1","gpdf_alpha2","gpdf_alpha1","gs9533","9.54.0rc1","gs9532","gs9531","gs9530","gs952","ghostpdl-9.53.0rc2","ghostpdl-9.53.0rc1","gs951","ghostpdl-9.51","gs951rc3","ghostpdl-9.51rc2","gs950","gs928rc4","gs928rc3","gs928rc2","gs928rc1","gs927","gs9.27","9.27","gs926","gs9.26rc1","9.27rc1","gs925rc1","gs925","gs924rc2","gs924","gs923rc1","gs923","gs922","gs922rc2","gs922rc1","gs921","gs920","9.21rc1","gs920rc1","gs919","gs918"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-33869.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}]}