PT-2026-35029 · Openprinting+2 · Cups+2

Tomer-Pl

Published

2026-04-24

Updated

2026-06-08

CVE-2026-41079

CVSS v3.1

5.4

Medium

Vector

AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L

Name of the Vulnerable Software and Affected Versions OpenPrinting CUPS versions prior to 2.4.17

Description A network-adjacent attacker can send a crafted SNMP response to the CUPS SNMP backend, leading to an out-of-bounds read of up to 176 bytes past a stack buffer. The leaked memory is converted from UTF-16 to UTF-8 and stored as printer supply description strings. These strings are then visible to authenticated users through the CUPS web interface and IPP Get-Printer-Attributes responses.

Recommendations Update to version 2.4.17.

Exploit

Fix

Information Disclosure

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-125

Related Identifiers

CVE-2026-41079

ECHO-8222-9154-2D64

OESA-2026-2197

OPENSUSE-SU-2026:10820-1

USN-8405-1

Affected Products

Cups

Linuxmint

Ubuntu

PT-2026-35029 · Openprinting+2 · Cups+2

CVE-2026-41079

Weakness Enumeration

Related Identifiers

Affected Products

References · 23