CVE-2014-4338
EPSS 0.39%
Description
cups-browsed in cups-filters before 1.0.53 allows remote attackers to bypass intended access restrictions in opportunistic circumstances by leveraging a malformed cups-browsed.conf BrowseAllow directive that is interpreted as granting browse access to all IP addresses.
How to fix CVE-2014-4338
To remediate CVE-2014-4338, upgrade the affected package to a fixed version below.
- Debian/cups-filters—upgrade to 1.0.53-1 or later
Is CVE-2014-4338 being exploited?
Low — EPSS is 0.4%, meaning exploitation activity has not been observed at scale.
Affected packages (1)
- from 0, < 1.0.53-1