Wind River Support Network

HomeDefectsLIN1018-3880
Fixed

LIN1018-3880 : Security Advisory - cups - CVE-2018-4300

Created: Apr 9, 2019    Updated: Apr 27, 2019
Resolved Date: Apr 23, 2019
Found In Version: unknown
Fix Version: 10.18.44.6
Severity: Standard
Applicable for: Wind River Linux LTS 18
Component/s: Userspace

Description

The session cookie generated by the CUPS web interface was easy to guess on Linux, allowing unauthorized scripted access to the web interface when the web interface is enabled. This issue affected versions prior to v2.2.10.

CREATE(Triage): {Link=https://nvd.nist.gov/vuln/detail/CVE-2018-4300 User=admin}

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube