vulnerability

Ubuntu: USN-3713-1 (CVE-2017-18248): CUPS vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
4	(AV:N/AC:M/Au:S/C:N/I:N/A:P)	Mar 26, 2018	Jul 24, 2018	Mar 27, 2026

Severity

CVSS

(AV:N/AC:M/Au:S/C:N/I:N/A:P)

Published

Mar 26, 2018

Added

Jul 24, 2018

Modified

Mar 27, 2026

Description

The add_job function in scheduler/ipp.c in CUPS before 2.2.6, when D-Bus support is enabled, can be crashed by remote attackers by sending print jobs with an invalid username, related to a D-Bus notification.

Solution

ubuntu-upgrade-cups

References

CVE-2017-18248
https://attackerkb.com/topics/CVE-2017-18248
CWE-20
EUVD-EUVD-2017-9379
NVD-CVE-2017-18248
UBUNTU-USN-3713-1
https://euvd.enisa.europa.eu/vulnerability/EUVD-2017-9379

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report