GCVE - cpe:2.3:a:artifex:mujs:-:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:artifex:mujs:-:*:*:*:*:*:*:*

part: a version: - update: *

Vendor	Artifex (`0075fabc-cec9-5063-a004-04a5c9db1a9b`)
Product	Mujs (`a2254e98-ee27-5160-9545-4188ab95f3e8`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:deb/debian/mujs`	purl2cpe	2026-06-01 10:15:00.022986
`pkg:deb/ubuntu/mujs`	purl2cpe	2026-06-01 10:15:00.022987
`pkg:github/artifexsoftware/mujs`	purl2cpe	2026-06-01 10:15:00.022989
`pkg:github/ccxvii/mujs`	purl2cpe	2026-06-01 10:15:00.022991
`pkg:rpm/fedora/mujs`	purl2cpe	2026-06-01 10:15:00.022992
`pkg:rpm/opensuse/mujs`	purl2cpe	2026-06-01 10:15:00.022994

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2016-9109`	vulnerable	2026-06-03 14:36:15.583025	Details available Artifex Software MuJS allows attackers to cause a denial of service (crash) via vectors related to incomplete escape sequences. NOTE: this vulnerability exists due to an incomplete fix for CVE-2016-7563. Published: 2017-01-18T17:00:00.000Z Updated: 2024-08-06T02:42:10.608Z Open on db.gcve.eu Reference links http://www.openwall.com/lists/oss-security/2016/10/30/4 http://www.securityfocus.com/bid/94150 https://bugs.ghostscript.com/show_bug.cgi?id=697136#c4 http://www.openwall.com/lists/oss-security/2016/11/07/5 http://www.openwall.com/lists/oss-security/2016/10/30/13	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-7564`	vulnerable	2026-06-03 14:36:08.110146	Details available Heap-based buffer overflow in the Fp_toString function in jsfunction.c in Artifex Software MuJS allows attackers to cause a denial of service (crash) via crafted input. Published: 2017-01-18T17:00:00.000Z Updated: 2024-08-06T02:04:54.865Z Open on db.gcve.eu Reference links https://bugs.ghostscript.com/show_bug.cgi?id=697137 http://www.openwall.com/lists/oss-security/2016/09/28/11 http://www.openwall.com/lists/oss-security/2016/09/21/5	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2016-7563`	vulnerable	2026-06-03 14:36:08.109691	Details available The chartorune function in Artifex Software MuJS allows attackers to cause a denial of service (out-of-bounds read) via a * (asterisk) at the end of the input. Published: 2017-01-18T17:00:00.000Z Updated: 2024-08-06T02:04:54.943Z Open on db.gcve.eu Reference links http://www.openwall.com/lists/oss-security/2016/09/28/11 https://bugs.ghostscript.com/show_bug.cgi?id=697136 http://www.openwall.com/lists/oss-security/2016/09/21/5	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.