Описание
CUPS before 1.1.21rc1 treats a Location directive in cupsd.conf as case sensitive, which allows attackers to bypass intended ACLs via a printer name containing uppercase or lowercase letters that are different from what is specified in the directive.
Ссылки
- Broken LinkPatch
- Broken Link
- Broken Link
- Third Party Advisory
- Issue TrackingVendor Advisory
- Issue Tracking
- Broken Link
- Broken LinkPatch
- Broken Link
- Broken Link
- Third Party Advisory
- Issue TrackingVendor Advisory
- Issue Tracking
- Broken Link
Уязвимые конфигурации
Одно из
EPSS
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
Связанные уязвимости
CUPS before 1.1.21rc1 treats a Location directive in cupsd.conf as case sensitive, which allows attackers to bypass intended ACLs via a printer name containing uppercase or lowercase letters that are different from what is specified in the directive.
CUPS before 1.1.21rc1 treats a Location directive in cupsd.conf as case sensitive, which allows attackers to bypass intended ACLs via a printer name containing uppercase or lowercase letters that are different from what is specified in the directive.
CUPS before 1.1.21rc1 treats a Location directive in cupsd.conf as cas ...
CUPS before 1.1.21rc1 treats a Location directive in cupsd.conf as case sensitive, which allows attackers to bypass intended ACLs via a printer name containing uppercase or lowercase letters that are different from what is specified in the directive.
EPSS
9.8 Critical
CVSS3
7.5 High
CVSS2