Lucene search
K

37 matches found

nessus
nessus
added 2024/07/22 12:0 a.m.17 views

Amazon Linux 2023 : cups, cups-client, cups-devel (ALAS2023-2024-660)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-660 advisory. OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the cupsd server with a Listen configuration item pointi...

6.7CVSS6.1AI score0.02421EPSS
Exploits1References4
redhat
redhat
added 2024/07/16 7:3 p.m.5 views

cups: Cupsd Listen arbitrary chmod 0140777

A flaw was found in the cupsd server. When starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can perform an arbitrary chmod of the provided argument, providing world-writable access to the target. Since cupsd is often running as root, this...

6.7CVSS5.8AI score0.02421EPSS
Exploits1References5
redhat
redhat
added 2024/07/02 3:43 p.m.5 views

cups: Cupsd Listen arbitrary chmod 0140777

A flaw was found in the cupsd server. When starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can perform an arbitrary chmod of the provided argument, providing world-writable access to the target. Since cupsd is often running as root, this...

6.7CVSS5.8AI score0.02421EPSS
Exploits1References5
osv
osv
added 2024/07/02 12:0 a.m.15 views

ALSA-2024:4265 Moderate: cups security update

The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: cups: Cupsd Listen arbitrary chmod 0140777 CVE-2024-35235 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and...

6.7CVSS5.7AI score0.02421EPSS
Exploits1References4
nessus
nessus
added 2024/07/02 12:0 a.m.25 views

RHEL 8 : cups (RHSA-2024:4265)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4265 advisory. The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: cups: Cupsd...

6.7CVSS6AI score0.02421EPSS
Exploits1References5
osv
osv
added 2024/06/28 4:8 p.m.7 views

USN-6844-2 cups regression

USN-6844-1 fixed vulnerabilities in the CUPS package. The update lead to the discovery of a regression in CUPS with regards to how the cupsd daemon handles Listen configuration directive. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Rory McNamara...

5.9AI score
Exploits0References2
ubuntu
ubuntu
added 2024/06/24 10:11 a.m.374 views

USN-6844-1: CUPS vulnerability

Rory McNamara discovered that when starting the cupsd server with a Listen configuration item, the cupsd process fails to validate if bind call passed. An attacker could possibly trick cupsd to perform an arbitrary chmod of the provided argument, providing world-writable access to the target...

6.7CVSS6AI score0.02421EPSS
Exploits1
osv
osv
added 2024/06/24 10:11 a.m.6 views

USN-6844-1 cups vulnerability

Rory McNamara discovered that when starting the cupsd server with a Listen configuration item, the cupsd process fails to validate if bind call passed. An attacker could possibly trick cupsd to perform an arbitrary chmod of the provided argument, providing world-writable access to the target...

6.7CVSS7AI score0.02421EPSS
Exploits1References2
openvas
openvas
added 2024/06/18 12:0 a.m.14 views

Mageia: Security Advisory (MGASA-2024-0227)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.7CVSS5.3AI score0.02421EPSS
Exploits1References4
nessus
nessus
added 2024/06/13 12:0 a.m.17 views

Debian dla-3826 : cups - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3826 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3826-1 [email protected] https://www.debian.org/lts/security/...

6.7CVSS6AI score0.02421EPSS
Exploits1References4
nvd
nvd
added 2024/06/11 3:16 p.m.22 views

CVE-2024-35235

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can be caused to perform an arbitrary chmod of the...

6.7CVSS0.02421EPSS
Exploits1References9
osv
osv
added 2024/06/11 2:13 p.m.33 views

CVE-2024-35235 Cupsd Listen arbitrary chmod 0140777

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can be caused to perform an arbitrary chmod of the...

4.4CVSS5.4AI score0.02421EPSS
Exploits1References11
cve
cve
added 2024/06/11 2:13 p.m.147 views

CVE-2024-35235

CVE-2024-35235 affects OpenPrinting CUPS. Affects cupsd Listen directives using a symlink can trigger arbitrary chmod on the argument, giving world-writable access to the target and, on some configurations (e.g., Ubuntu AppArmor), potentially full root command execution via cups-files.conf User/G...

6.7CVSS5.7AI score0.02421EPSS
Exploits1References9Affected Software1
alpinelinux
alpinelinux
added 2024/06/11 2:13 p.m.34 views

CVE-2024-35235

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can be caused to perform an arbitrary chmod of the...

6.7CVSS5.9AI score0.02421EPSS
Exploits1
osv
osv
added 2024/06/11 2:0 p.m.10 views

UBUNTU-CVE-2024-35235

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can be caused to perform an arbitrary chmod of the...

6.7CVSS7.1AI score0.02421EPSS
Exploits1References4
cnnvd
cnnvd
added 2024/06/11 12:0 a.m.3 views

OpenPrinting CUPS Security Vulnerability

OpenPrinting CUPS is a standards-based, open source printing system for Linux® and other Unix®-like operating systems from OpenPrinting, Inc. A security vulnerability exists in OpenPrinting CUPS versions 2.4.8 and earlier, which originates when the cupsd server is started with a Listen...

6.7CVSS6.8AI score0.02421EPSS
Exploits1References13
osv
osv
added 2019/08/01 3:15 p.m.4 views

CVE-2018-20909

cPanel before 70.0.23 allows arbitrary file-chmod operations during legacy incremental backups SEC-338...

7.1CVSS5.9AI score0.00336EPSS
Exploits0References1
Rows per page
Query Builder