#VU63747 Improper Authorization in CUPS


Published: 2022-05-26

Vulnerability identifier: #VU63747

Vulnerability risk: High

CVSSv3.1: 8.3 [CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-26691

CWE-ID: CWE-285

Exploitation vector: Local network

Exploit availability: No

Vulnerable software:
CUPS
Server applications / Other server solutions

Vendor: Apple Inc.

Description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to an error in implementation of "Local" authorization mechanism. A remote attacker can authenticate as to CUPS as root/admin without the 32-byte secret key and execute arbitrary code on the system.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

CUPS: 2.0.0 - 2.3.3

External links
http://bugzilla.redhat.com/show_bug.cgi?id=2084321

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the local network (LAN).

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Gentoo update for CUPS
Multiple vulnerabilities in Dell VxRail Appliance components
Improper authorization in IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data
Multiple vulnerabilities in Dell Data Protection Central
Multiple vulnerabilities in OpenShift API for Data Protection (OADP) 1.0
Multiple vulnerabilities in OpenShift API for Data Protection (OADP)
Multiple vulnerabilities in OpenShift Container Platform 4.11
Multiple vulnerabilities in IBM Robotic Process Automation for Cloud Pak
Multiple vulnerabilities in Oracle Linux
Multiple vulnerabilities in Red Hat OpenShift Logging 5.4