SUSE CVE-2026-34990

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, a local unprivileged user can coerce cupsd into authenticating to an attacker-controlled localhost IPP service with a reusable Authorization: Local ... token. That...

PT-2026-30239

Name of the Vulnerable Software and Affected Versions OpenPrinting CUPS versions 2.4.16 and prior Description OpenPrinting CUPS is a printing system for Linux and Unix-like operating systems. A local unprivileged user can manipulate cupsd into authenticating to an attacker-controlled localhost IP...

CVE-2025-54305

An issue was discovered in the Thermo Fisher Torrent Suite Django application 5.18.1. One of the middlewares included in this application, LocalhostAuthMiddleware, authenticates users as ionadmin if the REMOTEADDR property in request.META is set to 127.0.0.1, to 127.0.1.1, or to ::1. Any user wit...

PT-2025-49042

Name of the Vulnerable Software and Affected Versions Thermo Fisher Torrent Suite Django Application version 5.18.1 Description The application’s LocalhostAuthMiddleware authenticates users as ionadmin if the request.META'REMOTE ADDR' property is set to 127.0.0.1, 127.0.1.1, or ::1. This allows a...

PT-2022-16671 · Unknown · Simple Diagnostics Agent

Name of the Vulnerable Software and Affected Versions: The Simple Diagnostics Agent versions 1.0 up to version 1.57 Description: The issue concerns the lack of authentication checks for functionalities accessible via localhost on http port 3005. This allows an attacker to access administrative or...