Openprinting · Cups · CVE-2025-58060
Name of the Vulnerable Software and Affected Versions:
OpenPrinting CUPS versions 2.4.12 and earlier
Description:
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. When the `AuthType` is set to anything but `Basic`, if a request contains an `Authorization: Basic ...` header, the password is not checked, resulting in authentication bypass. Any configuration allowing an `AuthType` that is not `Basic` is affected.
Recommendations:
Update to version 2.4.13 or later.