Known Vulnerabilities for products from Cups
Listed below are 10 of the newest known vulnerabilities associated with the vendor "Cups".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2018-6553 | The CUPS AppArmor profile incorrectly confined the dnssd backend due to use of hard links. A local attacker could possibly us... | 8.8 - HIGH | 2018-08-10 | 2019-10-03 |
| CVE-2015-1159 | Cross-site scripting (XSS) vulnerability in the cgi_puts function in cgi-bin/template.c in the template engine in CUPS before... | 4.3 - MEDIUM | 2015-06-26 | 2017-09-23 |
| CVE-2015-1158 | The add_job function in scheduler/ipp.c in cupsd in CUPS before 2.0.3 performs incorrect free operations for multiple-value j... | 10 - HIGH | 2015-06-26 | 2017-09-23 |
| CVE-2014-8166 | The browsing feature in the server in CUPS does not filter ANSI escape sequences from shared printer names, which might allow... | 8.8 - HIGH | 2018-01-12 | 2020-10-23 |
| CVE-2008-1722 | Multiple integer overflows in (1) filter/image-png.c and (2) filter/image-zoom.c in CUPS 1.3 allow attackers to cause a denia... | 4.3 - MEDIUM | 2008-04-10 | 2018-10-03 |
| CVE-2008-0882 | Double free vulnerability in the process_browse_data function in CUPS 1.3.5 allows remote attackers to cause a denial of serv... | 10 - HIGH | 2008-02-21 | 2017-09-29 |
| CVE-2008-0047 | Heap-based buffer overflow in the cgiCompileSearch function in CUPS 1.3.5, and other versions including the version bundled w... | 9.3 - HIGH | 2008-03-18 | 2017-09-29 |
| CVE-2007-4351 | Off-by-one error in the ippReadIO function in cups/ipp.c in CUPS 1.3.3 allows remote attackers to cause a denial of service (... | 10 - HIGH | 2007-10-31 | 2018-10-03 |
| CVE-2007-0720 | The CUPS service on multiple platforms allows remote attackers to cause a denial of service (service hang) via a "partially-n... | 5 - MEDIUM | 2007-03-13 | 2020-12-15 |
| CVE-2005-4873 | Multiple stack-based buffer overflows in the phpcups PHP module for CUPS 1.1.23rc1 might allow context-dependent attackers to... | 7.5 - HIGH | 2005-12-31 | 2017-08-08 |
Known software with vulnerabilities from Cups
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Cups | Cups | - |