VertiGIS uses this page to provide centralized information about the critical vulnerability CVE-2023-36664, known as "Proof-of-Concept Exploit in Ghostscript", disclosed on 11. July, 2023, and its impact on on UT for ArcGIS product family.
This article will be updated as new information becomes available.
Products in the UT for ArcGIS product family do not ship with a version of Ghostscript.
In the past, the PLOT Server and PLOT Output products were used in the UT for ArcGIS environment to create DXF, TIFF and PDF files. An extended GPL Ghostscript version was installed from the PLOT Output package on the PLOT Server. This cannot be replaced with a current version of GPL Ghostscript. This extension of PLOT Server by PLOT Output was produced and provided for the last time with version 10.2.8. Only the client component PlotOutputExtension is still provided in current versions.
It is possible that old installations with PLOT Server and PLOT Output still exist. We recommend switching to alternative solutions for creating DXF, TIFF and PDF files. If you have any questions, please contact your account manager.