CVE-2023-4504 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7 HIGH	LOCAL	HIGH	NONE	CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
CISA-ADP	ADP	7 HIGH	LOCAL	HIGH	NONE	CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 10%

Affected Products (NVD)

Vendor	Product	Version
openprinting	cups	𝑥 < 2.4.7
openprinting	libppd	2.0:rc2
debian	debian_linux	10.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

cups

bookworm	2.4.2-3+deb12u8 fixed
bookworm (security)	2.4.2-3+deb12u8 fixed
bullseye	2.3.3op2-3+deb11u8 fixed
bullseye (security)	2.3.3op2-3+deb11u9 fixed
sid	2.4.10-2 fixed
trixie	2.4.10-2 fixed

libppd

bookworm	2:0.10-9 fixed
bullseye	2:0.10-7.3 fixed

Ubuntu Releases

Ubuntu Product

Codename

cups

bionic	Fixed 2.2.7-1ubuntu2.10+esm2 released
focal	Fixed 2.3.1-9ubuntu1.6 released
jammy	Fixed 2.4.1op1-1ubuntu4.7 released
lunar	Fixed 2.4.2-3ubuntu2.5 released
mantic	Fixed 2.4.6-0ubuntu2 released
noble	Fixed 2.4.6-0ubuntu2 released
oracular	Fixed 2.4.6-0ubuntu2 released
trusty	ignored
xenial	Fixed 2.1.3-4ubuntu0.11+esm4 released

libppd

bionic	needs-triage
focal	needs-triage
jammy	needs-triage
lunar	Fixed 2:2.0~rc1-0ubuntu1.2 released
mantic	Fixed 2:2.0~rc1-0ubuntu4 released
noble	Fixed 2:2.0~rc1-0ubuntu4 released
oracular	Fixed 2:2.0~rc1-0ubuntu4 released
trusty	ignored
xenial	needs-triage

Known Exploits!

Common Weakness Enumeration

CWE-122 - Heap-based Buffer Overflow
A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().
CWE-787 - Out-of-bounds Write
The software writes data past the end, or before the beginning, of the intended buffer.

References

https://github.com/OpenPrinting/cups/releases/tag/v2.4.7

https://github.com/OpenPrinting/cups/security/advisories/GHSA-pf5r-86w9-678h

https://github.com/OpenPrinting/libppd/security/advisories/GHSA-4f65-6ph5-qwh6

https://lists.debian.org/debian-lts-announce/2023/09/msg00041.html

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5WHEJIYMMAIXU2EC35MGTB5LGGO2FFJE/

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5WVS4I7JG3LISFPKTM6ADKJXXEPEEWBQ/

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AMYDKIE4PSJDEMC5OWNFCDMHFGLJ57XG/

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PXPVADB56NMLJWG4IZ3OZBNJ2ZOLPQJ6/

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T2GSPQAFK2Z6L57TRXEKZDF42K2EVBH7/

https://takeonme.org/cves/CVE-2023-4504.html

http://seclists.org/fulldisclosure/2024/Sep/33

https://github.com/OpenPrinting/cups/releases/tag/v2.4.7

https://github.com/OpenPrinting/cups/security/advisories/GHSA-pf5r-86w9-678h

https://github.com/OpenPrinting/libppd/security/advisories/GHSA-4f65-6ph5-qwh6

https://lists.debian.org/debian-lts-announce/2023/09/msg00041.html

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5WHEJIYMMAIXU2EC35MGTB5LGGO2FFJE/

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/5WVS4I7JG3LISFPKTM6ADKJXXEPEEWBQ/

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AMYDKIE4PSJDEMC5OWNFCDMHFGLJ57XG/

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PXPVADB56NMLJWG4IZ3OZBNJ2ZOLPQJ6/

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/T2GSPQAFK2Z6L57TRXEKZDF42K2EVBH7/

https://takeonme.org/cves/CVE-2023-4504.html