CVE-2024-47177
ADVISORY - nistSummary
CUPS is a standards-based, open-source printing system, and cups-filters provides backends, filters, and other software for CUPS 2.x to use on non-Mac OS systems. Any value passed to FoomaticRIPCommandLine
via a PPD file will be executed as a user controlled command. When combined with other logic bugs as described in CVE_2024-47176, this can lead to remote command execution.
Common Weakness Enumeration (CWE)
Improper Neutralization of Special Elements used in a Command ('Command Injection')
Improper Neutralization of Special Elements used in a Command ('Command Injection')
NIST
2.2
CVSS SCORE
9criticalDebian
-
Ubuntu
-
CVSS SCORE
N/AmediumRed Hat
0.6
CVSS SCORE
6.1mediumintheWild
-
-