CUPS is a standards-based, open-source printing system, and `cups-browsed` contains network printing functionality including, but not limited to, auto-discovering print services and shared printers. `cups-browsed` binds to `INADDR_ANY:631`, causing it to trust any packet from any source, and can cause the `Get-Printer-Attributes` IPP request to an attacker controlled URL. When combined with other vulnerabilities, such as CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177, an attacker can execute arbitrary commands remotely on the target machine without authentication when a malicious printer is printed to.

CVE Database V5

Detailed information about CVE-2024-47176: CWE-1327: Binding to an Unrestricted IP Address in OpenPrinting cups-browsed affecting OpenPrinting cups-browsed. Get

CVE-2024-47176: CWE-1327: Binding to an Unrestricted IP Address in OpenPrinting cups-browsed - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2024-47176: CWE-1327: Binding to an Unrestricted IP Address in OpenPrinting cups-browsed

CUPS is a standards-based, open-source printing system, and `libppd` can be used for legacy PPD file support. The `libppd` function `ppdCreatePPDFromIPP2` does not sanitize IPP attributes when creating the PPD buffer. When used in combination with other functions such as `cfGetPrinterAttributes5`, can result in user controlled input and ultimately code execution via Foomatic. This vulnerability can be part of an exploit chain leading to remote code execution (RCE), as described in CVE-2024-47176.

Detailed information about CVE-2024-47175: CWE-20: Improper Input Validation in OpenPrinting libppd affecting OpenPrinting libppd. Get real-time updates, techni

CVE-2024-47175: CWE-20: Improper Input Validation in OpenPrinting libppd - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2024-47175: CWE-20: Improper Input Validation in OpenPrinting libppd

CUPS is a standards-based, open-source printing system, and `libcupsfilters` contains the code of the filters of the former `cups-filters` package as library functions to be used for the data format conversion tasks needed in Printer Applications. The `cfGetPrinterAttributes5` function in `libcupsfilters` does not sanitize IPP attributes returned from an IPP server. When these IPP attributes are used, for instance, to generate a PPD file, this can lead to attacker controlled data to be provided to the rest of the CUPS system.

Detailed information about CVE-2024-47076: CWE-20: Improper Input Validation in OpenPrinting libcupsfilters affecting OpenPrinting libcupsfilters. Get real-time

CVE-2024-47076: CWE-20: Improper Input Validation in OpenPrinting libcupsfilters - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2024-47076: CWE-20: Improper Input Validation in OpenPrinting libcupsfilters

XStream is a simple library to serialize objects to XML and back again. This vulnerability may allow a remote attacker to terminate the application with a stack overflow error resulting in a denial of service only by manipulating the processed input stream when XStream is configured to use the BinaryStreamDriver. XStream 1.4.21 has been patched to detect the manipulation in the binary input stream causing the the stack overflow and raises an InputManipulationException instead. Users are advised to upgrade. Users unable to upgrade may catch the StackOverflowError in the client code calling XStream if XStream is configured to use the BinaryStreamDriver.

Detailed information about CVE-2024-47072: CWE-121: Stack-based Buffer Overflow in x-stream xstream affecting x-stream xstream. Get real-time updates, technical

CVE-2024-47072: CWE-121: Stack-based Buffer Overflow in x-stream xstream - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2024-47072: CWE-121: Stack-based Buffer Overflow in x-stream xstream

An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution.

Detailed information about CVE-2024-46956: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2024-46956: n/a - Live Threat Intelligence - Threat Radar | OffSeq.com

CVE-2024-46956: n/a

In the Elliptic package 6.5.6 for Node.js, ECDSA signature malleability occurs because BER-encoded signatures are allowed.

Detailed information about CVE-2024-42461: n/a. Get real-time updates, technical details, and mitigation strategies.

CVE-2024-42461: n/a

CVE-2024-42461: n/a

Description

Technical Details

Community Reviews

Related Threats

CVE-2024-47176: CWE-1327: Binding to an Unrestricted IP Address in OpenPrinting cups-browsed

CVE-2024-47175: CWE-20: Improper Input Validation in OpenPrinting libppd

CVE-2024-47076: CWE-20: Improper Input Validation in OpenPrinting libcupsfilters

CVE-2024-47072: CWE-121: Stack-based Buffer Overflow in x-stream xstream

CVE-2024-46956: n/a

Actions

External Links

Need enhanced features?

Latest Threats

Keyboard Shortcuts

Navigation

Search & Filters

UI Controls

Accessibility