CVE-2026-41079: CWE-125: Out-of-bounds Read in OpenPrinting cups
CVE-2026-41079 is a medium severity vulnerability in OpenPrinting CUPS versions prior to 2. 4. 17. It involves an out-of-bounds read triggered by a crafted SNMP response sent to the CUPS SNMP backend. This flaw allows reading up to 176 bytes beyond a stack buffer, leaking memory that is converted to UTF-8 and exposed as printer supply descriptions. These leaked strings can be viewed by authenticated users through IPP Get-Printer-Attributes responses and the CUPS web interface. The vulnerability does not impact integrity or availability and requires network adjacency but no privileges or user interaction. A fix is available in version 2. 4. 17.
AI Analysis
Technical Summary
OpenPrinting CUPS before version 2.4.17 contains an out-of-bounds read vulnerability (CWE-125) in its SNMP backend. A network-adjacent attacker can send a specially crafted SNMP response that causes the software to read up to 176 bytes beyond a stack buffer. The leaked memory is converted from UTF-16 to UTF-8 and stored as printer supply description strings. These strings are then accessible to authenticated users via IPP Get-Printer-Attributes responses and the CUPS web interface, leading to information disclosure (CWE-200). The vulnerability has a CVSS 3.1 base score of 4.3, indicating medium severity. The issue is fixed in CUPS version 2.4.17.
Potential Impact
The vulnerability allows an attacker with network adjacency to cause an out-of-bounds read, leaking up to 176 bytes of memory from the stack. This leaked data is exposed as printer supply description strings visible to authenticated users. The impact is limited to confidentiality loss of potentially sensitive memory contents. There is no impact on integrity or availability. No known exploits are reported in the wild.
Mitigation Recommendations
Upgrade OpenPrinting CUPS to version 2.4.17 or later, where this vulnerability is fixed. Since the vendor advisory confirms the fix in 2.4.17, applying this official update fully mitigates the issue. No other mitigations are indicated or required.
CVE-2026-41079: CWE-125: Out-of-bounds Read in OpenPrinting cups
Description
CVE-2026-41079 is a medium severity vulnerability in OpenPrinting CUPS versions prior to 2. 4. 17. It involves an out-of-bounds read triggered by a crafted SNMP response sent to the CUPS SNMP backend. This flaw allows reading up to 176 bytes beyond a stack buffer, leaking memory that is converted to UTF-8 and exposed as printer supply descriptions. These leaked strings can be viewed by authenticated users through IPP Get-Printer-Attributes responses and the CUPS web interface. The vulnerability does not impact integrity or availability and requires network adjacency but no privileges or user interaction. A fix is available in version 2. 4. 17.
CVSS v3.1
Score 4.3medium
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
OpenPrinting CUPS before version 2.4.17 contains an out-of-bounds read vulnerability (CWE-125) in its SNMP backend. A network-adjacent attacker can send a specially crafted SNMP response that causes the software to read up to 176 bytes beyond a stack buffer. The leaked memory is converted from UTF-16 to UTF-8 and stored as printer supply description strings. These strings are then accessible to authenticated users via IPP Get-Printer-Attributes responses and the CUPS web interface, leading to information disclosure (CWE-200). The vulnerability has a CVSS 3.1 base score of 4.3, indicating medium severity. The issue is fixed in CUPS version 2.4.17.
Potential Impact
The vulnerability allows an attacker with network adjacency to cause an out-of-bounds read, leaking up to 176 bytes of memory from the stack. This leaked data is exposed as printer supply description strings visible to authenticated users. The impact is limited to confidentiality loss of potentially sensitive memory contents. There is no impact on integrity or availability. No known exploits are reported in the wild.
Mitigation Recommendations
Upgrade OpenPrinting CUPS to version 2.4.17 or later, where this vulnerability is fixed. Since the vendor advisory confirms the fix in 2.4.17, applying this official update fully mitigates the issue. No other mitigations are indicated or required.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- GitHub_M
- Date Reserved
- 2026-04-16T16:43:03.176Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 69eba2fd87115cfb68542cd8
Added to database: 4/24/2026, 5:06:05 PM
Last enriched: 5/28/2026, 9:20:11 PM
Last updated: 6/9/2026, 1:00:58 AM
Views: 61
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.