Evilsocket

**Name of the Vulnerable Software and Affected Versions** CUPS versions 2.x cups-filters versions up to 2.0.1 **Description** The issue is related to the `FoomaticRIPCommandLine` function in the CUPS printing system, which allows remote command execution via a PPD file. This can be exploited when combined with other logic bugs, leading to the execution of arbitrary commands. The vulnerability is critical and can be exploited with low difficulty, requiring no user interaction and exploiting network-based vulnerabilities. It allows an attacker to send crafted packets that can manipulate printer attributes, leading to the injection of malicious PPD files. **Recommendations** For CUPS versions 2.x: Update to a version that fixes the vulnerability. For cups-filters versions up to 2.0.1: Update to a version higher than 2.0.1 to fix the vulnerability. As a temporary workaround, consider disabling the `FoomaticRIPCommandLine` function until a patch is available.

**Name of the Vulnerable Software and Affected Versions** cups versions prior to 2.4.11-alt1 cups-browsed versions prior to 2.0.1-0ubuntu2.1 cups-filters (affected versions not specified) **Description** The Common UNIX Printing System (CUPS) and related components, including `cups-browsed` and `cups-filters`, are affected by multiple vulnerabilities. These issues include remote command injection via manipulation of PPD files (`libppd`), improper binding of `cups-browsed` to all interfaces allowing unauthorized access, and a lack of sanitization of IPP attributes in `cups-filters`. Exploitation of these vulnerabilities could allow a remote attacker to execute arbitrary code. The `cups-browsed` component binds to UDP INADDR ANY:631, potentially allowing unauthorized access. The `cfGetPrinterAttributes` API in `cups-filters` does not sanitize returned IPP attributes, leading to potential vulnerabilities. **Recommendations** Update to cups version 2.4.11-alt1 or later. Update to cups-browsed version 2.0.1-0ubuntu2.1 or later. Update cups-filters to the latest available version.

**Name of the Vulnerable Software and Affected Versions** CUPS versions prior to the fixed version **Description** The issue is related to the `cfGetPrinterAttributes5` function in `libcupsfilters`, which does not sanitize IPP attributes returned from an IPP server. This can lead to attacker-controlled data being provided to the rest of the CUPS system, potentially allowing a remote attacker to disclose protected information. The vulnerability is actively being exploited. **Recommendations** As a temporary workaround, consider disabling the `cfGetPrinterAttributes5` function until a patch is available. Restrict access to the vulnerable `libcupsfilters` module to minimize the risk of exploitation. Avoid using unsanitized IPP attributes in the affected CUPS system until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** CUPS (affected versions not specified) **Description** The issue is related to the `libppd` function `ppdCreatePPDFromIPP2` not sanitizing IPP attributes when creating the PPD buffer. This can result in user-controlled input and ultimately code execution via Foomatic, potentially leading to remote code execution (RCE). The vulnerability can be part of an exploit chain and may allow an attacker to write arbitrary data to the resulting PPD file. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TerraMaster TOS versions prior to 3.0.34 **Description** A Shell metacharacter injection issue in the `/usr/www/include/ajax/GetTest.php` file allows for remote code execution as root. **Recommendations** For versions prior to 3.0.34, update to version 3.0.34 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Huawei E355s Mobile WiFi with firmware prior to 22.158.45.02.625 Huawei E355s Mobile WiFi with WEBUI prior to 13.100.04.01.625 **Description** The issue allows remote attackers to obtain sensitive configuration information. This can be achieved by either sniffing the network or sending unspecified commands. **Recommendations** For Huawei E355s Mobile WiFi with firmware prior to 22.158.45.02.625, update the firmware to version 22.158.45.02.625 or later. For Huawei E355s Mobile WiFi with WEBUI prior to 13.100.04.01.625, update the WEBUI to version 13.100.04.01.625 or later.

**Name of the Vulnerable Software and Affected Versions** Huawei E587 Mobile WiFi versions prior to 11.203.30.00.00 **Description** The issue allows remote attackers to bypass authentication, change configurations, send messages, and cause a denial of service (device restart) via unspecified vectors. **Recommendations** For versions prior to 11.203.30.00.00, update the firmware to version 11.203.30.00.00 or later to resolve the issue.