CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2024/07/02 12:0 a.m.•24 views

RHEL 8 : cups (RHSA-2024:4265)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:4265 advisory. The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: cups: Cupsd...

OSV•added 2024/06/28 4:8 p.m.•0 views

Exploits1References5

USN-6844-2 cups regression

USN-6844-1 fixed vulnerabilities in the CUPS package. The update lead to the discovery of a regression in CUPS with regards to how the cupsd daemon handles Listen configuration directive. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Rory McNamara...

5.9AI score

Exploits0References2

OpenVAS•added 2024/06/25 12:0 a.m.•16 views

Ubuntu: Security Advisory (USN-6844-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.7CVSS5.3AI score0.03102EPSS

Ubuntu•added 2024/06/24 10:11 a.m.•371 views

USN-6844-1: CUPS vulnerability

Rory McNamara discovered that when starting the cupsd server with a Listen configuration item, the cupsd process fails to validate if bind call passed. An attacker could possibly trick cupsd to perform an arbitrary chmod of the provided argument, providing world-writable access to the target...

OSV•added 2024/06/24 10:11 a.m.•0 views

Exploits1

USN-6844-1 cups vulnerability

6.7CVSS7AI score0.03102EPSS

Tenable Nessus•added 2024/06/24 12:0 a.m.•31 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 / 24.04 LTS : CUPS vulnerability (USN-6844-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 / 24.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-6844-1 advisory. Rory McNamara discovered that when starting the cupsd server with a Listen configuration item, the cupsd...

OpenVAS•added 2024/06/18 12:0 a.m.•13 views

Mageia: Security Advisory (MGASA-2024-0227)

6.7CVSS5.3AI score0.03102EPSS

Mageia•added 2024/06/17 5:44 p.m.•37 views

Updated cups packages fix security vulnerability

When starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can be caused to perform an arbitrary chmod of the provided argument, providing world-writable access to the target...

6.7CVSS7AI score0.03102EPSS

Tenable Nessus•added 2024/06/13 12:0 a.m.•15 views

Debian dla-3826 : cups - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3826 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3826-1 [email protected] https://www.debian.org/lts/security/...

UbuntuCve•added 2024/06/12 9:15 a.m.•343 views

CVE-2024-5742

A vulnerability was found in GNU Nano that allows a possible privilege escalation through an insecure temporary file. If Nano is killed while editing, a file it saves to an emergency file with the permissions of the running user provides a window of opportunity for attackers to escalate privilege...

6.7CVSS6.8AI score0.0008EPSS

Exploits0References3

RedhatCVE•added 2024/06/12 12:40 a.m.•19 views

CVE-2024-35235

A flaw was found in the cupsd server. When starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can perform an arbitrary chmod of the provided argument, providing world-writable access to the target. Since cupsd is often running as root, this...

4.4CVSS4.9AI score0.03102EPSS

OSV•added 2024/06/11 3:16 p.m.•0 views

AZL-42579 CVE-2024-35235 affecting package cups for versions less than 2.4.10-1

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can be caused to perform an arbitrary chmod of the...