Lucene search
K

75 matches found

OSV
OSV
added 2026/05/03 9:58 a.m.30 views

OESA-2026-2197 cups security update

CUPS is the standards-based, open source printing system developed by Apple Inc. for UNIX®-like operating systems. CUPS uses the Internet Printing Protocol IPP to support printing to local and network printers. Security Fixes: OpenPrinting CUPS is an open source printing system for Linux and othe...

5.4CVSS5.7AI score0.00409EPSS
Exploits1References2
CVE
CVE
added 2026/04/24 4:54 p.m.30 views

CVE-2026-41079

OpenPrinting CUPS (prior to 2.4.17) is vulnerable to a network-adjacent attacker who can send a crafted SNMP response to the CUPS SNMP backend, causing an out-of-bounds read of up to 176 bytes past a stack buffer. The leaked memory is interpreted from UTF-16 to UTF-8 and stored as printer supply ...

5.4CVSS5.3AI score0.00409EPSS
Exploits1References3Affected Software1
EUVD
EUVD
added 2026/04/24 4:54 p.m.10 views

EUVD-2026-25574

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to 2.4.17, a network-adjacent attacker can send a crafted SNMP response to the CUPS SNMP backend that causes an out-of-bounds read of up to 176 bytes past a stack buffer. The leaked memory i...

4.3CVSS5.3AI score0.00409EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/04/08 6:7 a.m.7 views

CVE-2026-39314

A flaw was found in CUPS, an open-source printing system. An unprivileged local user can exploit an integer underflow vulnerability by providing a negative job-password-supported Internet Printing Protocol IPP attribute. This manipulation causes the cupsd root process to crash, which can be...

6.2CVSS5.8AI score0.00154EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2026/04/03 10:16 p.m.7 views

CVE-2026-34978

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, the RSS notifier allows .. path traversal in notify-recipient-uri e.g., rss:///../job.cache, letting a remote IPP client write RSS XML bytes outside CacheDir/rss...

6.5CVSS6AI score0.00406EPSS
Exploits1References2
OSV
OSV
added 2026/04/03 10:16 p.m.4 views

UBUNTU-CVE-2026-34979

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, there is a heap-based buffer overflow in the CUPS scheduler when building filter option strings from job attribute. At time of publication, there are no publicly...

5.3CVSS6.1AI score0.00379EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/04/03 9:15 p.m.21 views

CVE-2026-34978 OpenPrinting CUPS: Path traversal in RSS notify-recipient-uri enables file write outside CacheDir/rss (and clobbering of job.cache)

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, the RSS notifier allows .. path traversal in notify-recipient-uri e.g., rss:///../job.cache, letting a remote IPP client write RSS XML bytes outside CacheDir/rss...

6.5CVSS0.00406EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.1 views

MiracleLinux 3 : cups-1.3.7-11.3.1AXS3 (AXSA:2009-414:03)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2009-414:03 advisory. The Common UNIX Printing System provides a portable printing layer for UNIX operating systems. It has been developed by Easy Software Products to...

9.3CVSS5.6AI score0.10228EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2026/01/08 1:15 p.m.13 views

cups: Slow client communication leads to a possible DoS attack

A flaw was found in cups. A client that connects to cupsd but sends slow messages, e.g. only one byte per second, delays cupsd as a whole, such that it becomes unusable by other clients...

5.5CVSS5.7AI score0.00195EPSS
Exploits1References4
Amazon
Amazon
added 2025/12/08 12:0 a.m.8 views

Medium: cups-filters

Issue Overview: CUPS is a standards-based, open-source printing system, and libcupsfilters contains the code of the filters of the former cups-filters package as library functions to be used for the data format conversion tasks needed in Printer Applications. In CUPS-Filters versions up to and...

5.5CVSS7.6AI score0.00391EPSS
Exploits3
OSV
OSV
added 2025/11/29 9:2 a.m.8 views

RLSA-2025:22063 Moderate: cups security update

The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: cups: Null Pointer Dereference in CUPS ippreadio Leading to Remote DoS CVE-2025-58364 For more details about the security issues, including the impact, a CVSS...

6.5CVSS6.8AI score0.01063EPSS
Exploits1References2
OSV
OSV
added 2025/11/27 3:0 p.m.9 views

UBUNTU-CVE-2025-61915

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user in the lpadmin group can use the cups web ui to change the config and insert a malicious line. Then the cupsd process which runs as root will parse the new config a...

6.7CVSS6.2AI score0.00409EPSS
Exploits1References4
OSV
OSV
added 2025/10/20 6:14 p.m.9 views

CLSA-2025-1760984077 cups: Fix of CVE-2025-58364

CVE-2025-58364: fix handling of extension tag in ippreadio...

6.5CVSS6.9AI score0.01063EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/10/01 12:0 a.m.2 views

RHEL 8 : cups (RHSA-2025:17164)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:17164 advisory. The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: cups:...

8CVSS7.9AI score0.00964EPSS
Exploits1References4
OSV
OSV
added 2025/09/26 1:8 p.m.4 views

OESA-2025-2334 cups security update

CUPS is the standards-based, open source printing system developed by Apple Inc. for UNIX®-like operating systems. CUPS uses the Internet Printing Protocol IPP to support printing to local and network printers. Security Fixes: 'Hi all,\n\nthere is important security vulnerability in...

8CVSS6.1AI score0.01063EPSS
Exploits2References3
CVE
CVE
added 2025/09/11 5:6 p.m.449 views

CVE-2025-58060

Summary: CVE-2025-58060 affects OpenPrinting CUPS and related package updates across Linux distributions, allowing authentication bypass when AuthType is not Basic but the request carries an Authorization: Basic header. The root cause is improper validation in cupsdAuthorize(), which can bypass p...

8CVSS6.7AI score0.00964EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/29 12:0 a.m.6 views

PT-2025-37253

Name of the Vulnerable Software and Affected Versions: CUPS versions 2.4.12 and earlier Description: CUPS Common Unix Printing System is an open-source printing system for Linux and Unix-like operating systems. Versions 2.4.12 and earlier are susceptible to a remote denial of service due to unsaf...

9.8CVSS8AI score0.62474EPSS
Exploits7References71
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 3: cups (TSSA-2022:0154)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0154 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

7.2CVSS7AI score0.00579EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/01/21 12:0 a.m.8 views

Huawei EulerOS: Security Advisory for cups-filters (EulerOS-SA-2025-1118)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8AI score0.76959EPSS
Exploits6References2
RedHat Linux
RedHat Linux
added 2025/01/08 12:3 p.m.6 views

cups: libppd: remote command injection via attacker controlled data in PPD file

A security vulnerability was found in OpenPrinting CUPS. The function ppdCreatePPDFromIPP2 in the libppd library is responsible for generating a PostScript Printer Description PPD file based on attributes retrieved from an Internet Printing Protocol IPP response. Essentially, it takes printer...

9.8CVSS5.9AI score0.62474EPSS
Exploits5References7
Rows per page
Query Builder