A use-after-free vulnerability in xps_finish_image_path() in devices/vector/gdevxps.c of Artifex Software GhostScript v9.50 allows a remote attacker to escalate privileges via a crafted PDF file. This is fixed in v9.51. CREATE(Triage):(User=admin) [CVE-2020-16303|https://nvd.nist.gov/vuln/detail/CVE-2020-16303]