Main Vulnerability Database Exploits ID:11681 - Exploit for Permissions, Privileges, and Access Controls in Ghostscript - CVE-2019-14811

ID:11681 - Exploit for Permissions, Privileges, and Access Controls in Ghostscript - CVE-2019-14811

Published: June 20, 2025

Vulnerability identifier: #VU20468

Vulnerability risk: Low

CVE-ID: CVE-2019-14811

CWE-ID: CWE-264

Exploitation vector: Remote access

Vulnerable software:
Ghostscript

Link to public exploit:

https://github.com/matejsmycka/CVE-2019-14811-in-pdf-exploit

Vulnerability description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to unrestricted access to .forceput in .pdf_hook_DSC_Creator. A remote attacker can create a specially crafted PDF file, trick the victim to open it and gain access to arbitrary files on the system.

Remediation

Install update from vendor's website.

ID:11681 - Exploit for Permissions, Privileges, and Access Controls in Ghostscript - CVE-2019-14811

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human