CVE-2025-27837: Ghostscript: Access to arbitrary files through truncated path with invalid UTF-8

Severity: Critical

CVSS Score: 9.8

An issue was discovered in Artifex Ghostscript before 10.05.0. Access to arbitrary files can occur through a truncated path with invalid UTF-8 characters, for base/gp_mswin.c and base/winrtsup.cpp.