CVE-2025-59799 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	4.3 MEDIUM	LOCAL	LOW	NONE	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 4%

Affected Products (NVD)

Vendor	Product	Version
artifex	ghostscript	𝑥 ≤ 10.05.1

𝑥

= Vulnerable software versions

openSUSE / SLES Releases

openSUSE Product

Release

ghostscript

suse enterprise desktop 15 SP6	9.52-150000.211.1 fixed
suse enterprise desktop 15 SP7	9.52-150000.211.1 fixed
suse enterprise sap 15 SP6	9.52-150000.211.1 fixed
suse enterprise sap 15 SP7	9.52-150000.211.1 fixed
suse enterprise server 15 SP4	9.52-150000.211.1 fixed
suse enterprise server 15 SP6	9.52-150000.211.1 fixed
suse enterprise server 15 SP7	9.52-150000.211.1 fixed

ghostscript-devel

suse enterprise desktop 15 SP6	9.52-150000.211.1 fixed
suse enterprise desktop 15 SP7	9.52-150000.211.1 fixed
suse enterprise sap 15 SP6	9.52-150000.211.1 fixed
suse enterprise sap 15 SP7	9.52-150000.211.1 fixed
suse enterprise server 15 SP4	9.52-150000.211.1 fixed
suse enterprise server 15 SP6	9.52-150000.211.1 fixed
suse enterprise server 15 SP7	9.52-150000.211.1 fixed

ghostscript-x11

suse enterprise desktop 15 SP6	9.52-150000.211.1 fixed
suse enterprise desktop 15 SP7	9.52-150000.211.1 fixed
suse enterprise sap 15 SP6	9.52-150000.211.1 fixed
suse enterprise sap 15 SP7	9.52-150000.211.1 fixed
suse enterprise server 15 SP4	9.52-150000.211.1 fixed
suse enterprise server 15 SP6	9.52-150000.211.1 fixed
suse enterprise server 15 SP7	9.52-150000.211.1 fixed

Common Weakness Enumeration

CWE-121 - Stack-based Buffer Overflow
A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

References

https://bugs.ghostscript.com/show_bug.cgi?id=708517

https://cgit.ghostscript.com/cgi-bin/cgit.cgi/ghostpdl.git/commit/?id=6dab38fb211f15226c242ab7a83fa53e4b0ff781

https://lists.debian.org/debian-lts-announce/2025/10/msg00010.html

https://bugs.ghostscript.com/show_bug.cgi?id=708517