CVE-2016-9136Improper Restriction of Operations within the Bounds of a Memory Buffer in Mujs

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer5 documents5 sources
Severity
7.5HIGHNVD
EPSS
0.2%
top 53.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Artifex Mujs
Timeline
PublishedNov 3
Latest updateMay 13

Description

Artifex Software, Inc. MuJS before a0ceaf5050faf419401fe1b83acfa950ec8a8a89 allows context-dependent attackers to obtain sensitive information by using the "crafted JavaScript" approach, related to a "Buffer Over-read" issue.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

NVDartifex/mujs2016-10-31

Patches

Patch: bugs.ghostscript.comPatch: bugs.ghostscript.com

🔴Vulnerability Details

3
GHSA
GHSA-6rm2-8mpq-5qxw: Artifex Software, Inc2022-05-13
OSV
CVE-2016-9136: Artifex Software, Inc2016-11-03
CVEList
CVE-2016-9136: Artifex Software, Inc2016-11-03

📋Vendor Advisories

1
Debian
CVE-2016-9136: mujs - Artifex Software, Inc. MuJS before a0ceaf5050faf419401fe1b83acfa950ec8a8a89 allo...2016
CVE-2016-9136 — Artifex Mujs vulnerability | cvebase