Home CVE Database CVE-2018-4180

CVE-2018-4180

Description

Affected versions of CUPS allow for the SetEnv and PassEnv directives to be specified in the cupsd.conf file, which is editable by non-root users using the cupsctl binary. This allows attacker-controlled environment variables to be passed to CUPS backends, some of which are run as root. By passing malicious values in environment variables to affected backends, it is possible to execute an attacker-supplied binary as root, subject to sandbox restrictions.

Priority: MEDIUM
CVSS v3: 7.8
Publish Date: Aug 14, 2018
Related ID: --
CVSS v2: HIGH
Modified Date: Aug 14, 2018

Find out more about CVE-2018-4180 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Related Products

Product Name Status Defect Fixed Downloads
Linux 7 SCP Not Vulnerable -- -- --
Linux 7 CGP Not Vulnerable -- -- --

Comments

cups

Live chat
Online