#VU97744 Command Injection in cups-filters - CVE-2024-47177


| Updated: 2024-11-22

Vulnerability identifier: #VU97744

Vulnerability risk: High

CVSSv4.0: 9.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Amber]

CVE-ID: CVE-2024-47177

CWE-ID: CWE-77

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
cups-filters
Other software / Other software solutions

Vendor: OpenPrinting

Description

The vulnerability allows a remote attacker to execute arbitrary commands on the target system.

The vulnerability exists due to improper input validation in FoomaticRIPCommandLine. A remote unauthenticated attacker can use a specially crafted PPD file and execute arbitrary commands on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

cups-filters: 1.0 - 2.0.1

External links
http://github.com/OpenPrinting/cups-filters/security/advisories/GHSA-p9rh-jxmq-gq47
http://github.com/OpenPrinting/cups-browsed/security/advisories/GHSA-rj88-6mr5-rcw8
http://github.com/OpenPrinting/libcupsfilters/security/advisories/GHSA-w63j-6g73-wmg5
http://github.com/OpenPrinting/libppd/security/advisories/GHSA-7xfx-47qg-grp6
http://www.cups.org
http://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-I

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, a fully functional exploit for this vulnerability is available.


Latest bulletins with this vulnerability


Multiple vulnerabilities in IBM Cloud Pak for Business Automation
Multiple vulnerabilities in IBM watsonx Assistant for IBM Cloud Pak for Data
Multiple vulnerabilities in IBM Watson CP4D Data Stores
Multiple vulnerabilities in Dell Hybrid Client
Multiple vulnerabilities in IBM Event Endpoint Management
Multiple vulnerabilities in IBM Event Streams
Multiple vulnerabilities in IBM Event Processing
openEuler update for cups-filters
Multiple vulnerabilities in Google ChromeOS LTS
Fedora 39 update for cups, cups-browsed, libcupsfilters, libppd