CVE-2023-34241

CVSS Score of 10 (low)

Details

Published Jun 22, 2023
Updated: Nov 17, 2023
CWE ID 416

Summary

CVE-2023-34241 is a vulnerability found in OpenPrinting CUPS, a printing system for Linux and Unix-like operating systems. The vulnerability affects versions 2.0.0 to 2.4.6 of CUPS and is classified as a use-after-free bug that impacts the entire cupsd process. The issue arises when the function `httpClose(con->http)` is called in `scheduler/client.c`, causing a pointer to be freed even after it has been passed to `httpGetHostname`. This vulnerability poses a potential danger to organizations using affected versions of CUPS as it could be exploited by attackers to execute arbitrary code or cause denial-of-service attacks. To remediate the vulnerability, organizations should update their CUPS installations to version 2.4.6 or later.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-34241 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options