PT-2024-6502 · Unknown+11 · Libcupsfilters+11

Evilsocket

·

Published

2024-09-26

·

Updated

2026-05-12

·

CVE-2024-47076

CVSS v3.1

8.6

High

VectorAV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N
Name of the Vulnerable Software and Affected Versions CUPS versions prior to the fixed version
Description The issue is related to the cfGetPrinterAttributes5 function in libcupsfilters, which does not sanitize IPP attributes returned from an IPP server. This can lead to attacker-controlled data being provided to the rest of the CUPS system, potentially allowing a remote attacker to disclose protected information. The vulnerability is actively being exploited.
Recommendations As a temporary workaround, consider disabling the cfGetPrinterAttributes5 function until a patch is available. Restrict access to the vulnerable libcupsfilters module to minimize the risk of exploitation. Avoid using unsanitized IPP attributes in the affected CUPS system until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

RCE

Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-77

Related Identifiers

ALSA-2024:7346
ALSA-2024:7463
ALSA-2024_7346
ALSA-2024_7463
ALT-PU-2024-14040
ALT-PU-2024-14890
BDU:2024-07644
CESA-2024_7463
CVE-2024-47076
DLA-3905-1
DSA-5778-1
GHSA-7XFX-47QG-GRP6
GHSA-P9RH-JXMQ-GQ47
GHSA-RJ88-6MR5-RCW8
GHSA-W63J-6G73-WMG5
INFSA-2024_7346
INFSA-2024_7463
MGASA-2024-0327
OESA-2024-2246
OPENSUSE-SU-2024_3863-1
OPENSUSE-SU-2025:15563-1
RHSA-2024:7346
RHSA-2024:7461
RHSA-2024:7462
RHSA-2024:7463
RHSA-2024:7503
RHSA-2024:7504
RHSA-2024:7506
RHSA-2024:7551
RHSA-2024:7553
RHSA-2024:7623
RHSA-2024_7346
RHSA-2024_7463
RLSA-2024:7346
RLSA-2024:7463
SUSE-SU-2024:3863-1
SUSE-SU-2024_3863-1
USN-7043-1
USN-7043-4
USN-7044-1

Affected Products

Alt Linux
Almalinux
Astra Linux
Cups
Centos
Linuxmint
Red Hat
Red Os
Rocky Linux
Suse
Ubuntu
Libcupsfilters