Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

Veracode
Veracodeadded 2018/12/11 2:14 a.m.28 views

Authentication Bypass

libcups.so is vulnerable to authentication bypass. The CUPS web interface uses an insecure function and seed to generate the session cookie, which results in a predictable token that can be guessed easily by a remote attacker to gain access to the application...

6.9AI score
Exploits1
Veracode
Veracodeadded 2018/07/26 3:23 a.m.18 views

Sandbox Bypass

libcups.so is vulnerable to sandbox bypasses. The library does not properly handle error conditions, allowing a malicious user with sandbox root access to execute backends without a sandbox profile...

8.2CVSS8.1AI score0.00148EPSS
Exploits0References7Affected Software1
Veracode
Veracodeadded 2018/04/23 6:43 a.m.20 views

Arbitrary IPP Command Execution

libcups.so is vulnerable to arbitrary IPP command execution attacks. The vulnerability exists as a localhost.localdomain whitelist entry in the validhost function of scheduler/client.c allowed arbitrary IPP commands to be executed through POST requests to the CUPS daemon via DNS rebinding attacks...

7.5CVSS7.7AI score0.007EPSS
Exploits1References6Affected Software1
Veracode
Veracodeadded 2018/04/20 6:54 a.m.18 views

Denial Of Service (DoS)

libcups.so is vulnerable to denial of service DoS attacks. The vulnerability exists as malicious users can supply usernames that contains invalid UTF-8 characters to cause a DoS attack...

5.3CVSS5.3AI score0.01002EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder