The vulnerability of the cfGetPrinterAttributes5 function in the libcupsfilters library of the CUPS printing server allows a attacker to disclose protected information.

The vulnerability of the cfGetPrinterAttributes5 function in the libcupsfilters library of the CUPS printing server is related to the lack of measures taken to neutralize special elements used in OS commands. Exploiting this vulnerability may allow a malicious actor to disclose protected...

The vulnerability of the CUPS printing server arises from incorrect handling of symbolic links before accessing files. This allows attackers to gain access to confidential data.

The vulnerability of the CUPS printing server is related to an incorrect definition of symbolic links before accessing the file. Exploiting this vulnerability can allow an attacker to gain access to confidential data when running the cupsd server with the Listen configuration element...

The vulnerability of the CUPS printing server stems from deficiencies in the authentication process, allowing attackers to gain access to confidential data.

The vulnerability of the CUPS printing server is related to deficiencies in the authentication process. Exploiting this vulnerability can allow an attacker to gain access to confidential data...

The vulnerability of the httpClose function in the CUPS printing server allows a attacker to cause a service failure.

The vulnerability of the httpClose function in a CUPS printing server lies in the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the CUPS printing server stems from deficiencies in the authentication process, which allows attackers to escalate their privileges.

The vulnerability of the CUPS printing server is related to deficiencies in the authentication process. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of the ippReadIO function in the cups/ipp.c component of the printing server’s CUPS software lies in the lack of input validation mechanisms. This allows attackers to access confidential information.

The vulnerability of the ippReadIO function in the cups/ipp.c component of the printing server CUPS is related to the lack of a mechanism for checking input data. Exploiting this vulnerability allows an attacker to gain access to confidential information remotely...

The vulnerability in the web interface of the CUPS printing server allows a perpetrator to gain unauthorized access to protected information.

The vulnerability in the web interface of the CUPS printing server relates to the lack of protection for operational data. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the array_find function in the CUPS printing server, related to reading beyond the buffer memory limit, allows an attacker to access confidential data.

The vulnerability of the arrayfind function in the CUPS printing server is related to incorrect memory boundary checking. Exploiting this vulnerability could allow an attacker to access confidential data...

cups: Predictable session cookie breaks CSRF protection

REJECTED CVE A predictable session cookie vulnerability was identified in the CUPS printing server. Insufficient randomness in session cookie generation made it easy to guess, undermining CSRF protection. This flaw allowed unauthorized scripted access to the CUPS web interface when enabled, posin...

The vulnerability of the add_job function (scheduler/ipp.c) in the CUPS printing server allows a attacker to compromise data integrity.

The vulnerability of the addjob function in the scheduler/ipp.c file of the CUPS print server is related to insufficient validation of input data when D-Bus support is enabled. Exploiting this vulnerability could allow a malicious actor to compromise data integrity...

The vulnerability of the CUPS printing server, related to authentication errors, allows a perpetrator to gain access to confidential data.

The vulnerability of the CUPS printing server is related to the improper handling of certain include directives. This allows unprivileged users to gain access to and read arbitrary files from the superuser’s perspective. Exploiting this vulnerability enables a perpetrator to gain access to...

The vulnerability of the CUPS printing server, related to authentication errors, allows a hacker to execute arbitrary code with root privileges.

The vulnerability of the CUPS printing server is related to the SetEnv and PassEnv directives. Exploiting this vulnerability allows an attacker to execute arbitrary code with root privileges...

The vulnerability of the CUPS printing server lies in its ability to execute arbitrary IPP commands, allowing users to compromise the integrity of data.

The vulnerability of the CUPS printing server relates to the ability to execute arbitrary IPP commands. Exploiting this vulnerability allows a malicious actor to compromise data integrity by sending POST requests to the CUPS service along with reattached DNS information...

DEBIAN-CVE-2014-8166

The browsing feature in the server in CUPS does not filter ANSI escape sequences from shared printer names, which might allow remote attackers to execute arbitrary code via a crafted printer name...

The vulnerability of the CUPS printing server allows a attacker to modify the device configuration file or execute arbitrary code.

The vulnerability of the addjob function in the scheduler/ipp.c file of the CUPS printing server is related to security configuration errors. Exploiting this vulnerability allows a malicious actor to modify the device configuration file remotely or execute arbitrary code using specially crafted...

SUSE: Security Advisory for cups (SUSE-SA:2009:024)

The remote host is missing updates announced in advisory SUSE-SA:2009:024. Copyright C 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software...