Case update: DIVD-2024-00038 - Remote Code Execution CUPS - #CVE-2024-47176
A series of critical vulnerabilities, identified as CVE-2024-47176, CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177, have been discovered in the Common Unix Printing System (CUPS), impacting potentially over 198,000 devices. These vulnerabilities allow for both remote code execution (RCE) and distributed denial of service (DDoS) attacks with minimal resources required for exploitation. Researchers have highlighted the severity of these flaws, noting that some systems running outdated versions of CUPS, dating back to 2007, are particularly vulnerable. Automated scanners and tools, such as cups\_scanner.py, have been developed to detect at-risk systems and assist in mitigating the risk of exploitation. Organizations are advised to update their CUPS software, implement access controls, and monitor for suspicious activity to protect against potential attacks. The urgency of addressing these vulnerabilities is underscored by the high potential for abuse and the significant amplification factors that can result in overwhelming network resources.