// For flags

CVE-2023-24805

Command injection in cups-filters

Severity Score

8.8
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. If you use the Backend Error Handler (beh) to create an accessible network printer, this security vulnerability can cause remote code execution. `beh.c` contains the line `retval = system(cmdline) >> 8;` which calls the `system` command with the operand `cmdline`. `cmdline` contains multiple user controlled, unsanitized values. As a result an attacker with network access to the hosted print server can exploit this vulnerability to inject system commands which are executed in the context of the running server. This issue has been addressed in commit `8f2740357` and is expected to be bundled in the next release. Users are advised to upgrade when possible and to restrict access to network printers in the meantime.

A vulnerability was found in cups-filters. This security flaw occurs if you use beh to create an accessible network printer, possibly resulting in remote code execution.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2023-01-30 CVE Reserved
  • 2023-05-17 CVE Published
  • 2024-08-02 CVE Updated
  • 2024-08-02 First Exploit
  • 2024-08-21 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
  • CWE-94: Improper Control of Generation of Code ('Code Injection')
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Linuxfoundation
Search vendor "Linuxfoundation"
 Cups-filters
Search vendor "Linuxfoundation" for product "Cups-filters"
 < 2.0
Search vendor "Linuxfoundation" for product "Cups-filters" and version " < 2.0"
-
Affected
Linuxfoundation
Search vendor "Linuxfoundation"
 Cups-filters
Search vendor "Linuxfoundation" for product "Cups-filters"
 2.0
Search vendor "Linuxfoundation" for product "Cups-filters" and version "2.0"
beta1
Affected
Linuxfoundation
Search vendor "Linuxfoundation"
 Cups-filters
Search vendor "Linuxfoundation" for product "Cups-filters"
 2.0
Search vendor "Linuxfoundation" for product "Cups-filters" and version "2.0"
beta2
Affected
Linuxfoundation
Search vendor "Linuxfoundation"
 Cups-filters
Search vendor "Linuxfoundation" for product "Cups-filters"
 2.0
Search vendor "Linuxfoundation" for product "Cups-filters" and version "2.0"
beta3
Affected
Linuxfoundation
Search vendor "Linuxfoundation"
 Cups-filters
Search vendor "Linuxfoundation" for product "Cups-filters"
 2.0
Search vendor "Linuxfoundation" for product "Cups-filters" and version "2.0"
rc1
Affected
Fedoraproject
Search vendor "Fedoraproject"
 Fedora
Search vendor "Fedoraproject" for product "Fedora"
 37
Search vendor "Fedoraproject" for product "Fedora" and version "37"
-
Affected
Fedoraproject
Search vendor "Fedoraproject"
 Fedora
Search vendor "Fedoraproject" for product "Fedora"
 38
Search vendor "Fedoraproject" for product "Fedora" and version "38"
-
Affected
Debian
Search vendor "Debian"
 Debian Linux
Search vendor "Debian" for product "Debian Linux"
 10.0
Search vendor "Debian" for product "Debian Linux" and version "10.0"
-
Affected
Debian
Search vendor "Debian"
 Debian Linux
Search vendor "Debian" for product "Debian Linux"
 11.0
Search vendor "Debian" for product "Debian Linux" and version "11.0"
-
Affected