7.5 High
AI Score
Confidence
Low
0.429 Medium
EPSS
Percentile
97.3%
Integer underflow in the asn1_get_string function in the SNMP back end (backend/snmp.c) for CUPS 1.2 through 1.3.4 allows remote attackers to execute arbitrary code via a crafted SNMP response that triggers a stack-based buffer overflow.