Lucene search
+L

78 matches found

osv
osv
added 2 days ago3 views

RLSA-2026:39316 Moderate: cups security update

The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: cups: OpenPrinting CUPS: Shared PostScript queue lets anonymous Print-Job requests reach lp code execution over the network CVE-2026-34980 For more details about...

6.4CVSS7AI score0.00502EPSS
Exploits1References2
osv
osv
added 2026/05/03 9:58 a.m.31 views

OESA-2026-2197 cups security update

CUPS is the standards-based, open source printing system developed by Apple Inc. for UNIX®-like operating systems. CUPS uses the Internet Printing Protocol IPP to support printing to local and network printers. Security Fixes: OpenPrinting CUPS is an open source printing system for Linux and othe...

5.4CVSS5.7AI score0.00409EPSS
Exploits1References2
euvd
euvd
added 2026/04/24 4:54 p.m.10 views

EUVD-2026-25574

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to 2.4.17, a network-adjacent attacker can send a crafted SNMP response to the CUPS SNMP backend that causes an out-of-bounds read of up to 176 bytes past a stack buffer. The leaked memory i...

4.3CVSS5.3AI score0.00409EPSS
Exploits1References3
cve
cve
added 2026/04/24 4:54 p.m.34 views

CVE-2026-41079

OpenPrinting CUPS (prior to 2.4.17) is vulnerable to a network-adjacent attacker who can send a crafted SNMP response to the CUPS SNMP backend, causing an out-of-bounds read of up to 176 bytes past a stack buffer. The leaked memory is interpreted from UTF-16 to UTF-8 and stored as printer supply ...

5.4CVSS5.3AI score0.00409EPSS
Exploits1References3Affected Software1
redhat
redhat
added 2026/04/17 5:4 p.m.3 views

cups: OpenPrinting CUPS: Authorization bypass via case-insensitive username comparison

A flaw was found in OpenPrinting CUPS. This authorization bypass vulnerability allows an unprivileged user to gain unauthorized access to restricted operations. This can be exploited by using a username that differs only in case from an authorized user during authorization checks...

6.3CVSS6AI score0.00317EPSS
Exploits1References6
redhatcve
redhatcve
added 2026/04/08 6:7 a.m.9 views

CVE-2026-39314

A flaw was found in CUPS, an open-source printing system. An unprivileged local user can exploit an integer underflow vulnerability by providing a negative job-password-supported Internet Printing Protocol IPP attribute. This manipulation causes the cupsd root process to crash, which can be...

6.2CVSS5.8AI score0.00154EPSS
Exploits1References4
osv
osv
added 2026/04/07 5:0 p.m.3 views

CVE-2026-39316 CUPS has a use-after-free in `cupsdDeleteTemporaryPrinters` via dangling subscription pointer

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, a use-after-free vulnerability exists in the CUPS scheduler cupsd when temporary printers are automatically deleted. cupsdDeleteTemporaryPrinters in...

4CVSS6.3AI score0.00178EPSS
Exploits1References3
ubuntucve
ubuntucve
added 2026/04/03 10:16 p.m.7 views

CVE-2026-34978

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, the RSS notifier allows .. path traversal in notify-recipient-uri e.g., rss:///../job.cache, letting a remote IPP client write RSS XML bytes outside CacheDir/rss...

6.5CVSS6AI score0.00406EPSS
Exploits1References3
osv
osv
added 2026/04/03 10:16 p.m.10 views

UBUNTU-CVE-2026-34979

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, there is a heap-based buffer overflow in the CUPS scheduler when building filter option strings from job attribute. At time of publication, there are no publicly...

5.3CVSS6.1AI score0.00379EPSS
Exploits1References4
cvelist
cvelist
added 2026/04/03 9:15 p.m.38 views

CVE-2026-34978 OpenPrinting CUPS: Path traversal in RSS notify-recipient-uri enables file write outside CacheDir/rss (and clobbering of job.cache)

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, the RSS notifier allows .. path traversal in notify-recipient-uri e.g., rss:///../job.cache, letting a remote IPP client write RSS XML bytes outside CacheDir/rss...

6.5CVSS0.00406EPSS
Exploits1References1
nessus
nessus
added 2026/01/14 12:0 a.m.2 views

MiracleLinux 3 : cups-1.3.7-11.3.1AXS3 (AXSA:2009-414:03)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2009-414:03 advisory. The Common UNIX Printing System provides a portable printing layer for UNIX operating systems. It has been developed by Easy Software Products to...

9.3CVSS5.6AI score0.10228EPSS
Exploits2References3
redhat
redhat
added 2026/01/08 1:15 p.m.13 views

cups: Slow client communication leads to a possible DoS attack

A flaw was found in cups. A client that connects to cupsd but sends slow messages, e.g. only one byte per second, delays cupsd as a whole, such that it becomes unusable by other clients...

5.5CVSS5.7AI score0.00195EPSS
Exploits1References4
amazon
amazon
added 2025/12/08 12:0 a.m.10 views

Medium: cups-filters

Issue Overview: CUPS is a standards-based, open-source printing system, and libcupsfilters contains the code of the filters of the former cups-filters package as library functions to be used for the data format conversion tasks needed in Printer Applications. In CUPS-Filters versions up to and...

5.5CVSS7.6AI score0.0044EPSS
Exploits3
osv
osv
added 2025/11/29 9:2 a.m.10 views

RLSA-2025:22063 Moderate: cups security update

The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: cups: Null Pointer Dereference in CUPS ippreadio Leading to Remote DoS CVE-2025-58364 For more details about the security issues, including the impact, a CVSS...

6.5CVSS6.8AI score0.01063EPSS
Exploits1References2
osv
osv
added 2025/11/27 3:0 p.m.10 views

UBUNTU-CVE-2025-61915

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user in the lpadmin group can use the cups web ui to change the config and insert a malicious line. Then the cupsd process which runs as root will parse the new config a...

6.7CVSS6.2AI score0.00409EPSS
Exploits1References4
osv
osv
added 2025/10/20 6:14 p.m.9 views

CLSA-2025-1760984077 cups: Fix of CVE-2025-58364

CVE-2025-58364: fix handling of extension tag in ippreadio...

6.5CVSS6.9AI score0.01063EPSS
Exploits1References1
nessus
nessus
added 2025/10/01 12:0 a.m.3 views

RHEL 8 : cups (RHSA-2025:17164)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:17164 advisory. The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: cups:...

8CVSS7.9AI score0.00964EPSS
Exploits1References4
osv
osv
added 2025/09/26 1:8 p.m.4 views

OESA-2025-2334 cups security update

CUPS is the standards-based, open source printing system developed by Apple Inc. for UNIX®-like operating systems. CUPS uses the Internet Printing Protocol IPP to support printing to local and network printers. Security Fixes: 'Hi all,\n\nthere is important security vulnerability in...

8CVSS6.1AI score0.01063EPSS
Exploits2References3
cve
cve
added 2025/09/11 5:6 p.m.455 views

CVE-2025-58060

Summary: CVE-2025-58060 affects OpenPrinting CUPS and related package updates across Linux distributions, allowing authentication bypass when AuthType is not Basic but the request carries an Authorization: Basic header. The root cause is improper validation in cupsdAuthorize(), which can bypass p...

8CVSS6.7AI score0.00964EPSS
Exploits1References4Affected Software1
ptsecurity
ptsecurity
added 2025/08/29 12:0 a.m.6 views

PT-2025-37253

Name of the Vulnerable Software and Affected Versions: CUPS versions 2.4.12 and earlier Description: CUPS Common Unix Printing System is an open-source printing system for Linux and Unix-like operating systems. Versions 2.4.12 and earlier are susceptible to a remote denial of service due to unsaf...

9.8CVSS8AI score0.62474EPSS
Exploits8References71
Rows per page
Query Builder