VDB
DEBIAN-CVE-2018-4300
DEBIAN-CVE-2018-4300
PUBLISHED
CVSS 5.900000095367432 MEDIUM
The session cookie generated by the CUPS web interface was easy to guess on Linux, allowing unauthorized scripted access to the web interface when the web interface is enabled. This issue affected versions prior to v2.2.10.
Risk Scores
CVSS v3.0
5.900000095367432
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:11 | cups | 0, 0, 0 |
| Debian:12 | cups | 0, 0, 0 |
| Debian:14 | cups | 0, 0, 0 |
| Debian:13 | cups | 0, 0, 0 |
Timeline
- Apr 3, 2019 CVE Published
- Apr 28, 2026 CVE Updated