Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cups vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5849
Integer underflow in the asn1_get_string function in the SNMP back end (backend/snmp.c) for CUPS 1.2 up to and including 1.3.4 allows remote malicious users to execute arbitrary code via a crafted SNMP response that triggers a stack-based buffer overflow.
Easy Software Products Cups 1.3.3
Easy Software Products Cups 1.2.10
Easy Software Products Cups 1.2.12
Easy Software Products Cups 1.2.4
Easy Software Products Cups 1.2.9
1 EDB exploit
NA
CVE-2014-2707
cups-browsed in cups-filters 1.0.41 prior to 1.0.51 allows remote IPP printers to execute arbitrary commands via shell metacharacters in the (1) model or (2) PDL, related to "System V interface scripts generated for queues."
Linuxfoundation Cups-filters 1.0.49
Linuxfoundation Cups-filters 1.0.50
Linuxfoundation Cups-filters 1.0.47
Linuxfoundation Cups-filters 1.0.48
Linuxfoundation Cups-filters 1.0.43
Linuxfoundation Cups-filters 1.0.44
Linuxfoundation Cups-filters 1.0.41
Linuxfoundation Cups-filters 1.0.42
Linuxfoundation Cups-filters 1.0.45
Linuxfoundation Cups-filters 1.0.46
NA
CVE-2005-2874
The is_path_absolute function in scheduler/client.c for the daemon in CUPS prior to 1.1.23 allows remote malicious users to cause a denial of service (CPU consumption by tight loop) via a "..\.." URL in an HTTP request.
Easy Software Products Cups 1.1
Easy Software Products Cups 1.1.1
Easy Software Products Cups 1.1.16
Easy Software Products Cups 1.1.17
Easy Software Products Cups 1.1.19 Rc5
Easy Software Products Cups 1.1.2
Easy Software Products Cups 1.1.20 Rc6
Easy Software Products Cups 1.1.21
Easy Software Products Cups 1.1.5
Easy Software Products Cups 1.1.5 1
Easy Software Products Cups 1.1.8
Easy Software Products Cups 1.1.9
Easy Software Products Cups 1.1.12
Easy Software Products Cups 1.1.13
Easy Software Products Cups 1.1.19 Rc1
Easy Software Products Cups 1.1.19 Rc2
Easy Software Products Cups 1.1.20 Rc2
Easy Software Products Cups 1.1.20 Rc3
Easy Software Products Cups 1.1.22 Rc1
Easy Software Products Cups 1.1.22 Rc2
Easy Software Products Cups 1.1.6 1
Easy Software Products Cups 1.1.6 2
NA
CVE-2010-0393
The _cupsGetlang function, as used by lppasswd.c in lppasswd in CUPS 1.2.2, 1.3.7, 1.3.9, and 1.4.1, relies on an environment variable to determine the file that provides localized message strings, which allows local users to gain privileges via a file that contains crafted local...
Apple Cups 1.2.2
Apple Cups 1.4.1
Apple Cups 1.3.7
Apple Cups 1.3.9
NA
CVE-2003-0788
Unknown vulnerability in the Internet Printing Protocol (IPP) implementation in CUPS prior to 1.1.19 allows remote malicious users to cause a denial of service (CPU consumption from a "busy loop") via certain inputs to the IPP port (TCP 631).
Easy Software Products Cups 1.0.4 8
Easy Software Products Cups 1.1.1
Easy Software Products Cups 1.1.17
Easy Software Products Cups 1.1.18
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.12
Easy Software Products Cups 1.1.4
Easy Software Products Cups 1.1.4 2
Easy Software Products Cups 1.0.4
Easy Software Products Cups 1.1.15
Easy Software Products Cups 1.1.16
Easy Software Products Cups 1.1.6
Easy Software Products Cups 1.1.7
Easy Software Products Cups 1.1.13
Easy Software Products Cups 1.1.14
Easy Software Products Cups 1.1.4 3
Easy Software Products Cups 1.1.4 5
NA
CVE-2004-1267
Buffer overflow in the ParseCommand function in hpgl-input.c in the hpgltops program for CUPS 1.1.22 allows remote malicious users to execute arbitrary code via a crafted HPGL file.
Easy Software Products Cups 1.1.13
Easy Software Products Cups 1.1.14
Easy Software Products Cups 1.1.20
Easy Software Products Cups 1.1.21
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.12
Easy Software Products Cups 1.1.19
Easy Software Products Cups 1.1.19 Rc5
Easy Software Products Cups 1.1.6
Easy Software Products Cups 1.1.7
Easy Software Products Cups 1.0.4 8
Easy Software Products Cups 1.1.1
Easy Software Products Cups 1.1.17
Easy Software Products Cups 1.1.18
Easy Software Products Cups 1.1.4 3
Easy Software Products Cups 1.1.4 5
Easy Software Products Cups 1.0.4
Easy Software Products Cups 1.1.15
Easy Software Products Cups 1.1.16
Easy Software Products Cups 1.1.22 Rc1
Easy Software Products Cups 1.1.4
Easy Software Products Cups 1.1.4 2
1 EDB exploit
NA
CVE-2004-1268
lppasswd in CUPS 1.1.22 ignores write errors when modifying the CUPS passwd file, which allows local users to corrupt the file by filling the associated file system and triggering the write errors.
Easy Software Products Cups 1.1.12
Easy Software Products Cups 1.1.13
Easy Software Products Cups 1.1.19 Rc5
Easy Software Products Cups 1.1.20
Easy Software Products Cups 1.1.7
Easy Software Products Cups 1.1.1
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.18
Easy Software Products Cups 1.1.19
Easy Software Products Cups 1.0.4
Easy Software Products Cups 1.0.4 8
Easy Software Products Cups 1.1.16
Easy Software Products Cups 1.1.17
Easy Software Products Cups 1.1.4 2
Easy Software Products Cups 1.1.4 3
Easy Software Products Cups 1.1.4 5
Easy Software Products Cups 1.1.6
Easy Software Products Cups 1.1.14
Easy Software Products Cups 1.1.15
Easy Software Products Cups 1.1.21
Easy Software Products Cups 1.1.22 Rc1
Easy Software Products Cups 1.1.4
NA
CVE-2004-1269
lppasswd in CUPS 1.1.22 does not remove the passwd.new file if it encounters a file-size resource limit while writing to passwd.new, which causes subsequent invocations of lppasswd to fail.
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.12
Easy Software Products Cups 1.1.19
Easy Software Products Cups 1.1.19 Rc5
Easy Software Products Cups 1.1.20
Easy Software Products Cups 1.1.6
Easy Software Products Cups 1.1.7
Easy Software Products Cups 1.0.4
Easy Software Products Cups 1.1.15
Easy Software Products Cups 1.1.16
Easy Software Products Cups 1.1.4
Easy Software Products Cups 1.1.4 2
Easy Software Products Cups 1.0.4 8
Easy Software Products Cups 1.1.1
Easy Software Products Cups 1.1.17
Easy Software Products Cups 1.1.18
Easy Software Products Cups 1.1.4 3
Easy Software Products Cups 1.1.4 5
Easy Software Products Cups 1.1.13
Easy Software Products Cups 1.1.14
Easy Software Products Cups 1.1.21
Easy Software Products Cups 1.1.22 Rc1
1 EDB exploit
NA
CVE-2004-1270
lppasswd in CUPS 1.1.22, when run in environments that do not ensure that file descriptors 0, 1, and 2 are open when lppasswd is called, does not verify that the passwd.new file is different from STDERR, which allows local users to control output to passwd.new via certain user in...
Easy Software Products Cups 1.1.1
Easy Software Products Cups 1.1.10
Easy Software Products Cups 1.1.19
Easy Software Products Cups 1.1.19 Rc5
Easy Software Products Cups 1.1.4 5
Easy Software Products Cups 1.1.6
Easy Software Products Cups 1.1.14
Easy Software Products Cups 1.1.15
Easy Software Products Cups 1.1.22 Rc1
Easy Software Products Cups 1.1.4
Easy Software Products Cups 1.0.4
Easy Software Products Cups 1.0.4 8
Easy Software Products Cups 1.1.16
Easy Software Products Cups 1.1.17
Easy Software Products Cups 1.1.18
Easy Software Products Cups 1.1.4 2
Easy Software Products Cups 1.1.4 3
Easy Software Products Cups 1.1.12
Easy Software Products Cups 1.1.13
Easy Software Products Cups 1.1.20
Easy Software Products Cups 1.1.21
Easy Software Products Cups 1.1.7
8.8
CVSSv3
CVE-2014-8166
The browsing feature in the server in CUPS does not filter ANSI escape sequences from shared printer names, which might allow remote malicious users to execute arbitrary code via a crafted printer name.
Cups Cups
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »