Wind River Support Network

HomeDefectsLIN7-10856
Fixed

LIN7-10856 : Security Advisory - cups - CVE-2018-4300

Created: Apr 9, 2019    Updated: May 18, 2019
Resolved Date: Apr 23, 2019
Found In Version: unknown
Fix Version: 7.0.0.30
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Userspace

Description

The session cookie generated by the CUPS web interface was easy to guess on Linux, allowing unauthorized scripted access to the web interface when the web interface is enabled. This issue affected versions prior to v2.2.10.

CREATE(Triage): {Link=https://nvd.nist.gov/vuln/detail/CVE-2018-4300 User=admin}

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube