CUPS cups-browsed Remote Unauthenticated Printer Registration (CVE-2024-47176)

medium Nessus Plugin ID 207864

Synopsis

The remote web server is a CUPS server and responds to untrusted requests.

Description

The cups-browsed server running on the remote host trusts any well formatted packet received and responds to a potentially attacker controlled URL. A remote, unauthenticated attacker can exploit this vulnerability to solicit information and, combined with other CVEs, achieve RCE.

Solution

Upgrade to the latest available version or apply the recommended security patch per the vendor advisory.

See Also

http://www.nessus.org/u?ebf4de66

http://www.nessus.org/u?03d62753

Plugin Details

Severity: Medium

ID: 207864

File Name: cups_CVE-2024-47176.nbin

Version: 1.5

Type: remote

Family: CGI abuses

Published: 9/27/2024

Updated: 11/12/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.9

CVSS v2

Risk Factor: High

Base Score: 7.6

Temporal Score: 6

Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2024-47176

CVSS v3

Risk Factor: Medium

Base Score: 5.3

Temporal Score: 4.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:cups:cups, cpe:/a:openprinting:cups

Exploit Available: true

Exploit Ease: Exploits are available

Exploited by Nessus: true

Patch Publication Date: 9/26/2024

Vulnerability Publication Date: 9/26/2024

Reference Information

CVE: CVE-2024-47176