CVE Handling – CVE-2025-27837

r_meirelles · a month ago

CVE-2025-27837 is related to the Ghostscript product. Lansweeper reports that the “current” version installed is Ghostscript 10.02.1, which is vulnerable.

However, we have manually updated the server to Ghostscript 10.05.0, which includes the official fix for this vulnerability. Despite this, Lansweeper continues to report CVE-2025-27837 on this asset.

I have already:

Removed and re-added the asset

Forced synchronization

Performed a full rescan

Still, the CVE remains listed as active.

Operating System: Ubuntu 24.04.2 LTS

Please advise how to resolve or dismiss this false positive.

Sincronização forçada

Realizou uma nova verificação completa

Ainda assim, o CVE continua listado como ativo.

Sistema operacional: Ubuntu 24.04.2 LTS

Por favor, informe como resolver ou descartar esse falso positivo.

Obi_1_Cinobi · 3 weeks ago

Hello there!

If you still technical assistance with this issue, please raise a support case: https://www.lansweeper.com/contact/contact-support/

If you need technical support and have issues with accessing the Support Portal, please use this URL instead: https://www.lansweeper.com/contact/contact-support-case/

CVE Handling – CVE-2025-27837

General Discussions

New to Lansweeper?

Try Lansweeper For Free