5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.051 Low
EPSS
Percentile
93.0%
The directory-services functionality in the scheduler in CUPS 1.1.17 and
1.1.22 allows remote attackers to cause a denial of service (cupsd daemon
outage or crash) via manipulations of the timing of CUPS browse packets,
related to a “pointer use-after-delete flaw.”
Author | Note |
---|---|
mdeslaur | was fixed upstream in 1.1.23 |