CVE-2025-27837
Published: 25 March 2025
Description
Adversaries may search local system sources, such as file systems, configuration files, local databases, virtual machine files, or process memory, to find files of interest and sensitive data prior to Exfiltration.
Security Summary
CVE-2025-27837 is a path traversal vulnerability (CWE-22) discovered in Artifex Ghostscript versions before 10.05.0. The flaw resides in the base/gp_mswin.c and base/winrtsup.cpp components, where a truncated path containing invalid UTF-8 characters enables access to arbitrary files.
Attackers can exploit this vulnerability remotely over the network (AV:N) with low attack complexity (AC:L), requiring no privileges (PR:N) or user interaction (UI:N), and without changing scope (S:U). Achieving a CVSS v3.1 base score of 9.8, exploitation results in high impacts on confidentiality, integrity, and availability (C:H/I:H/A:H), allowing unauthorized access to arbitrary files on affected Windows systems processing malicious inputs.
The Ghostscript bug tracker at https://bugs.ghostscript.com/show_bug.cgi?id=708238 documents the issue, with mitigation achieved by upgrading to Ghostscript 10.05.0 or later.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
Path traversal vulnerability enables remote arbitrary file access on systems processing untrusted inputs, directly facilitating exploitation of public-facing applications (T1190) and data collection from the local file system (T1005).