Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-2856HistoryApr 18, 2014 - 2:55 p.m.
CVE-2014-2856
2014-04-1814:55:00
Debian Security Bug Tracker
security-tracker.debian.org
10
0.009 Low
EPSS
Percentile
82.2%
Cross-site scripting (XSS) vulnerability in scheduler/client.c in Common Unix Printing System (CUPS) before 1.7.2 allows remote attackers to inject arbitrary web script or HTML via the URL path, related to the is_path_absolute function.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | cups | < 1.7.2-1 | cups_1.7.2-1_all.deb |
| Debian | 11 | all | cups | < 1.7.2-1 | cups_1.7.2-1_all.deb |
| Debian | 10 | all | cups | < 1.7.2-1 | cups_1.7.2-1_all.deb |
| Debian | 999 | all | cups | < 1.7.2-1 | cups_1.7.2-1_all.deb |
| Debian | 13 | all | cups | < 1.7.2-1 | cups_1.7.2-1_all.deb |
Related
checkpoint_advisories
checkpoint_advisories
fedora
fedora
[SECURITY] Fedora 19 Update: cups-1.6.4-5.fc19
2014-04-29 05:24:35
[SECURITY] Fedora 20 Update: cups-1.7.2-1.fc20
2014-04-30 04:08:38
nessus
nessus
Fedora 19 : cups-1.6.4-5.fc19 (2014-4384)
2014-04-29 00:00:00
CUPS < 1.7.2 is_path_absolute Function XSS
2014-04-28 00:00:00
Mandriva Linux Security Advisory : cups (MDVSA-2014:091)
2014-05-19 00:00:00
prion
prion
Cross site scripting
2014-04-18 14:55:00
mageia
mageia
Updated cups packages fix CVE-2014-2856
2014-04-24 23:10:04
securityvulns
securityvulns
CUPS crossite scripting
2014-05-04 00:00:00
[USN-2172-1] CUPS vulnerability
2014-05-04 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0193)
2022-01-28 00:00:00
Ubuntu Update for cups USN-2172-1
2014-05-02 00:00:00
CUPS Web Interface < 1.7.2 XSS Vulnerability
2014-04-22 00:00:00
cvelist
cvelist
CVE-2014-2856
2014-04-18 14:00:00
veracode
veracode
Cross-site Scripting (XSS)
2019-01-15 09:02:22
cve
cve
CVE-2014-2856
2014-04-18 14:55:00
ubuntucve
ubuntucve
CVE-2014-2856
2014-04-18 00:00:00
ubuntu
ubuntu
CUPS vulnerability
2014-04-24 00:00:00
redhat
redhat
(RHSA-2014:1388) Moderate: cups security and bug fix update
2014-10-14 00:00:00
centos
centos
cups security update
2014-10-20 18:08:35
oraclelinux
oraclelinux
cups security and bug fix update
2014-10-15 00:00:00
amazon
amazon
Medium: cups
2014-10-28 17:17:00