CVSS: 7.8EPSS: 0%CPEs: 15EXPL: 0CVE-2024-47850 – cups-browsed: cups-filters: cups-browsed vulnerable to DDoS amplification attack
https://notcve.org/view.php?id=CVE-2024-47850
04 Oct 2024 — CUPS cups-browsed before 2.5b1 will send an HTTP POST request to an arbitrary destination and port in response to a single IPP UDP packet requesting a printer to be added, a different vulnerability than CVE-2024-47176. (The request is meant to probe the new printer but can be used to create DDoS amplification attacks.) A flaw was found in cups-browsed. This vulnerability allows an attacker to launch DDoS amplification attacks via an HTTP POST request to an arbitrary destination and port in response to a sin... • https://github.com/OpenPrinting/cups • CWE-400: Uncontrolled Resource Consumption •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 4CVE-2020-8424 – Cups Easy 1.0 - Cross Site Request Forgery (Password Reset)
https://notcve.org/view.php?id=CVE-2020-8424
28 Jan 2020 — Cups Easy (Purchase & Inventory) 1.0 is vulnerable to CSRF that leads to admin account takeover via passwordmychange.php. Cups Easy (Purchase & Inventory) versión 1.0, es vulnerable a un ataque de tipo CSRF que conlleva a la toma de control de la cuenta de administrador por medio del archivo passwordmychange.php. Cups Easy version 1.0 suffers from a cross site request forgery vulnerability. • https://packetstorm.news/files/id/156140 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 4CVE-2020-8425 – Cups Easy 1.0 - Cross Site Request Forgery (Password Reset)
https://notcve.org/view.php?id=CVE-2020-8425
28 Jan 2020 — Cups Easy (Purchase & Inventory) 1.0 is vulnerable to CSRF that leads to admin account deletion via userdelete.php. Cups Easy (Purchase & Inventory) versión 1.0, es vulnerable a un ataque de tipo CSRF que conlleva a la eliminación de la cuenta de administrador por medio del archivo userdelete.php. Cups Easy version 1.0 suffers from a cross site request forgery vulnerability. • https://packetstorm.news/files/id/156140 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2018-6553 – AppArmor cupsd Sandbox Bypass Due to Use of Hard Links
https://notcve.org/view.php?id=CVE-2018-6553
11 Jul 2018 — The CUPS AppArmor profile incorrectly confined the dnssd backend due to use of hard links. A local attacker could possibly use this issue to escape confinement. This flaw affects versions prior to 2.2.7-1ubuntu2.1 in Ubuntu 18.04 LTS, prior to 2.2.4-7ubuntu3.1 in Ubuntu 17.10, prior to 2.1.3-4ubuntu0.5 in Ubuntu 16.04 LTS, and prior to 1.7.2-0ubuntu1.10 in Ubuntu 14.04 LTS. El perfil CUPS AppArmor confinó incorrectamente la puerta trasera dnssd debido al uso de enlaces físicos. Un atacante local podría empl... • https://lists.debian.org/debian-lts-announce/2018/07/msg00014.html •
CVSS: 8.8EPSS: 1%CPEs: 1EXPL: 0CVE-2014-8166
https://notcve.org/view.php?id=CVE-2014-8166
12 Jan 2018 — The browsing feature in the server in CUPS does not filter ANSI escape sequences from shared printer names, which might allow remote attackers to execute arbitrary code via a crafted printer name. La característica de navegación en el servidor en CUPS no filtra secuencias de escape ANSI de nombres de impresora compartidos, lo que podría permitir que atacantes remotos ejecuten código arbitrario mediante un nombre de impresora manipulado. • http://www.openwall.com/lists/oss-security/2015/03/24/15 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 81%CPEs: 1EXPL: 4CVE-2015-1158 – CUPS < 2.0.3 - Remote Command Execution
https://notcve.org/view.php?id=CVE-2015-1158
10 Jun 2015 — The add_job function in scheduler/ipp.c in cupsd in CUPS before 2.0.3 performs incorrect free operations for multiple-value job-originating-host-name attributes, which allows remote attackers to trigger data corruption for reference-counted strings via a crafted (1) IPP_CREATE_JOB or (2) IPP_PRINT_JOB request, as demonstrated by replacing the configuration file and consequently executing arbitrary code. La función add_job en scheduler/ipp.c en cupsd en CUPS anterior a 2.0.3 realiza incorrectamente las opera... • https://packetstorm.news/files/id/140920 • CWE-254: 7PK - Security Features •
CVSS: 9.8EPSS: 63%CPEs: 1EXPL: 2CVE-2015-1159 – cups: cross-site scripting flaw in CUPS web UI (VU#810572)
https://notcve.org/view.php?id=CVE-2015-1159
10 Jun 2015 — Cross-site scripting (XSS) vulnerability in the cgi_puts function in cgi-bin/template.c in the template engine in CUPS before 2.0.3 allows remote attackers to inject arbitrary web script or HTML via the QUERY parameter to help/. Vulnerabilidad de XSS en la función cgi_puts en cgi-bin/template.c en el motor de plantillas en CUPS anterior a 2.0.3 permite a atacantes remotos inyectar secuencias de comandos web arbitrarios o HTML a través del parámetro QUERY en help/. A cross-site scripting flaw was found in th... • https://packetstorm.news/files/id/132389 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 0%CPEs: 11EXPL: 0CVE-2012-4510
https://notcve.org/view.php?id=CVE-2012-4510
20 Nov 2012 — cups-pk-helper before 0.2.3 does not properly wrap the (1) cupsGetFile and (2) cupsPutFile function calls, which allows user-assisted remote attackers to read or overwrite sensitive files using CUPS resources. cups-pk-helper antes de v0.2.3 no trata correctamente las llamadas a funciones (1) cupsGetFile y (2) cupsPutFile, lo que permite a atacantes remotos asistidos por el usuario leer o sobrescribir archivos confidenciales utilizando recursos CUPS. • http://www.debian.org/security/2012/dsa-2562 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.5EPSS: 4%CPEs: 1EXPL: 0CVE-2008-1722 – cups: integer overflow in the image filter
https://notcve.org/view.php?id=CVE-2008-1722
10 Apr 2008 — Multiple integer overflows in (1) filter/image-png.c and (2) filter/image-zoom.c in CUPS 1.3 allow attackers to cause a denial of service (crash) and trigger memory corruption, as demonstrated via a crafted PNG image. Múltiples desbordamientos de enteros en (1) filter/image-png.c y (2) fileter/image-zoom.c en CUPS 1.3, permite a atacantes provocar una denegación de servicio (caída)a disparar una corrupción de memoria, como se demostró a través de una imagen PNG. • http://secunia.com/advisories/29809 • CWE-20: Improper Input Validation CWE-190: Integer Overflow or Wraparound •
CVSS: 9.8EPSS: 25%CPEs: 3EXPL: 0CVE-2008-0047 – cups: heap based buffer overflow in cgiCompileSearch()
https://notcve.org/view.php?id=CVE-2008-0047
18 Mar 2008 — Heap-based buffer overflow in the cgiCompileSearch function in CUPS 1.3.5, and other versions including the version bundled with Apple Mac OS X 10.5.2, when printer sharing is enabled, allows remote attackers to execute arbitrary code via crafted search expressions. Un desbordamiento de búfer en la región heap de la memoria en la función cgiCompileSearch en CUPS versión 1.3.5 y otras versiones incluyendo la versión incorporada con Apple Mac OS X versión 10.5.2, cuando el uso compartido de impresoras está ha... • http://docs.info.apple.com/article.html?artnum=307562 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-122: Heap-based Buffer Overflow •