16 matches found
EUVD-2026-26152
A flaw has been found in eiceblue spire-pdf-mcp-server 0.1.1. This impacts the function getpdfpath of the file src/spirepdfmcp/server.py of the component PDF File Handler. Executing a manipulation of the argument filepath can lead to path traversal. The attack can be launched remotely. The exploi...
MiracleLinux 9 : cups-2.3.3op2-16.el9.1 (AXSA:2023-6372:08)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6372:08 advisory. cups: Information leak through Cups-Get-Document operation CVE-2023-32360 Tenable has extracted the preceding description block directly from the MiracleLinu...
Flagsmith 安全漏洞
Flagsmith is an open source, full-featured feature flags and remote configuration service from Flagsmith Open Source. A security vulnerability exists in Flagsmith versions prior to 2.134.1 that stems from the getdocument endpoint not being properly protected by permissions...
PT-2024-35472 · Flagsmith · Flagsmith
Name of the Vulnerable Software and Affected Versions: Flagsmith versions prior to 2.134.1 Description: The issue concerns the "get document" endpoint, which is not correctly protected by permissions. This could potentially allow unauthorized access. Recommendations: For versions prior to 2.134.1...
CLSA-2024-1718903513 cups: Fix of 2 CVEs
CVE-2023-32360: require authentication for CUPS-Get-Document. - CVE-2023-32324: fix cupsstrlcpy to exit immediately if a length of the source string is zero...
CLSA-2024-1718903288 cups: Fix of 2 CVEs
CVE-2023-32360: require authentication for CUPS-Get-Document. - CVE-2023-32324: fix cupsstrlcpy to exit immediately if a length of the source string is zero...
CLSA-2023-1699907659 Fix CVE(s): CVE-2023-32360
SECURITY UPDATE: An unauthenticated user may be able to access recently printed documents. The config file /etc/cups/cupsd.conf should be edited manually in case the cups has been already installed in the system: the and sections should be changed according to the patch. -...
CLSA-2023-1699907536 Fix CVE(s): CVE-2023-32360
SECURITY UPDATE: An unauthenticated user may be able to access recently printed documents. The config file /etc/cups/cupsd.conf should be edited manually in case the cups has been already installed in the system: the and sections should be changed according to the patch -...
cups: Information leak through Cups-Get-Document operation
A vulnerability was found in OpenPrinting CUPS. Unauthorized users are permitted to fetch documents over local or remote networks, leading to confidentiality breach...
cups: Information leak through Cups-Get-Document operation
A vulnerability was found in OpenPrinting CUPS. Unauthorized users are permitted to fetch documents over local or remote networks, leading to confidentiality breach...
Important: cups security update
The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: cups: Information leak through Cups-Get-Document operation CVE-2023-32360 For more details about the security issues, including the impact, a CVSS score,...
cups: Information leak through Cups-Get-Document operation
A vulnerability was found in OpenPrinting CUPS. Unauthorized users are permitted to fetch documents over local or remote networks, leading to confidentiality breach...
cups: Information leak through Cups-Get-Document operation
A vulnerability was found in OpenPrinting CUPS. Unauthorized users are permitted to fetch documents over local or remote networks, leading to confidentiality breach...
cups: Information leak through Cups-Get-Document operation
A vulnerability was found in OpenPrinting CUPS. Unauthorized users are permitted to fetch documents over local or remote networks, leading to confidentiality breach...
cups: Information leak through Cups-Get-Document operation
A vulnerability was found in OpenPrinting CUPS. Unauthorized users are permitted to fetch documents over local or remote networks, leading to confidentiality breach...
CVE-2020-0239
In getDocumentMetadata of DocumentsContract.java, there is a possible disclosure of location metadata from a file due to a permissions bypass. This could lead to local information disclosure from a file eg. a photo containing location metadata with no additional execution privileges needed. User...