CVE-2025-27837

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Debian Linux (affected versions not specified)

Description The issue allows access to arbitrary files through a truncated path with invalid UTF-8. It is also related to package vulnerabilities in ghostscript.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

ALT-PU-2025-8484

ALT-PU-2025-9591

BDU:2025-03708

CVE-2025-27837

MGASA-2025-0098

OPENSUSE-SU-2025:14953-1

Affected Products

Alt Linux

Debian

Ghostscript

CVE-2025-27837

Weakness Enumeration

Related Identifiers

Affected Products

References · 36