CVE-2024-47175 — HIGH (8.6)

Q: How severe is CVE-2024-47175?

CVE-2024-47175 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2024-47175?

Check the references section above for vendor advisories and patch information. Affected products include: Openprinting Libppd, Debian Debian Linux.

Vulnerability Description

CUPS is a standards-based, open-source printing system, and `libppd` can be used for legacy PPD file support. The `libppd` function `ppdCreatePPDFromIPP2` does not sanitize IPP attributes when creating the PPD buffer. When used in combination with other functions such as `cfGetPrinterAttributes5`, can result in user controlled input and ultimately code execution via Foomatic. This vulnerability can be part of an exploit chain leading to remote code execution (RCE), as described in CVE-2024-47176.

CVSS Score

8.6

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality

NONE

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Openprinting	Libppd	<= 2.0.0
Debian	Debian Linux	11.0

Related Weaknesses (CWE)

CWE-20

References

https://github.com/OpenPrinting/cups-browsed/security/advisories/GHSA-rj88-6mr5-Not Applicable
https://github.com/OpenPrinting/cups-filters/security/advisories/GHSA-p9rh-jxmq-Not Applicable
https://github.com/OpenPrinting/libcupsfilters/security/advisories/GHSA-w63j-6g7Not Applicable
https://github.com/OpenPrinting/libppd/security/advisories/GHSA-7xfx-47qg-grp6ExploitVendor Advisory
https://www.cups.orgProduct
https://www.evilsocket.net/2024/09/26/Attacking-UNIX-systems-via-CUPS-Part-IExploitThird Party Advisory
http://www.openwall.com/lists/oss-security/2024/09/27/3Mailing List
https://github.com/OpenPrinting/libppd/commit/d681747ebf12602cb426725eb8ce275321Patch
https://lists.debian.org/debian-lts-announce/2024/09/msg00047.htmlMailing List
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0016
https://security.netapp.com/advisory/ntap-20241011-0001/

FAQ

What is CVE-2024-47175?

CVE-2024-47175 is a vulnerability with a CVSS score of 8.6 (HIGH). CUPS is a standards-based, open-source printing system, and `libppd` can be used for legacy PPD file support. The `libppd` function `ppdCreatePPDFromIPP2` does not sanitize IPP attributes when creatin...

How severe is CVE-2024-47175?

CVE-2024-47175 has been rated HIGH with a CVSS base score of 8.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-47175?

Check the references section above for vendor advisories and patch information. Affected products include: Openprinting Libppd, Debian Debian Linux.