CVE-2025-57812 is a vulnerability classified under CWE-125 (Out-of-bounds Read) and CWE-787 (Out-of-bounds Write) affecting the imagetoraster filter component within the CUPS-Filters package and its successor library libcupsfilters. CUPS is a widely used open-source printing system, and libcupsfilters provides data format conversion functions essential for printer applications. The flaw arises in the processing of TIFF image files where the pixel buffer allocation is based on the number of pixels multiplied by a pre-calculated bytes-per-pixel value. However, the processing function is called with a size calculated as the number of pixels times three bytes, leading to out-of-bounds memory access when the bytes-per-pixel value is set to one. This discrepancy allows reading or writing beyond the allocated buffer. To exploit this, an attacker must submit a print job containing a specially crafted TIFF file and specify print job options that influence the bytes-per-pixel parameter. The vulnerability exists in CUPS-Filters versions up to 1.28.17 and libcupsfilters versions from 2.0.0 up to but not including 2.1.1. The vulnerable functions are _cupsImageReadTIFF() in CUPS-Filters 1.x and _cfImageReadTIFF() in libcupsfilters 2.x, invoked through imagetoraster or cfFilterImageToRaster() respectively. The attack surface is limited to printer configurations that invoke these filters. A patch addressing this issue has been committed, but no public exploits are known. The CVSS v3.1 score is 3.7, reflecting low severity due to the attack vector requiring local network access, low privileges, and high attack complexity without user interaction, with limited confidentiality and integrity impact and no availability impact.

For European organizations, this vulnerability primarily threatens the confidentiality and integrity of data processed by networked printing services using vulnerable versions of CUPS-Filters or libcupsfilters. Attackers with network access to printers can submit malicious print jobs containing crafted TIFF files to exploit the vulnerability, potentially leading to unauthorized memory reads or writes. This could result in leakage of sensitive information processed during printing or corruption of print jobs, undermining data integrity. While the vulnerability does not directly impact system availability, exploitation could be a foothold for further attacks or information gathering. Organizations with extensive printing infrastructure, especially those in sectors handling sensitive documents such as government, finance, healthcare, and legal services, are at higher risk. The low CVSS score indicates limited impact scope, but the ubiquity of CUPS in Linux-based systems and network printers in European enterprises means the exposure is non-negligible. Additionally, the lack of known exploits suggests a window of opportunity for proactive mitigation before active exploitation occurs.

European organizations should immediately identify all printing systems and servers running affected versions of CUPS-Filters (<=1.28.17) or libcupsfilters (>=2.0.0 and <2.1.1). Apply the official patches or upgrade to libcupsfilters 2.1.1 or later where the vulnerability is fixed. Where patching is delayed, restrict network access to printing services to trusted hosts only and implement network segmentation to isolate printers from untrusted networks. Monitor print job logs for unusual TIFF files or abnormal print job options that could indicate exploitation attempts. Employ intrusion detection systems with signatures targeting malformed TIFF files or suspicious print job parameters. Disable or limit the use of the imagetoraster filter if not required by the printing workflow. Educate IT staff on the risks associated with print job processing vulnerabilities and ensure print servers run with the least privileges necessary. Regularly audit and update printer firmware and associated software to maintain security hygiene.