Vulnerability Database

309,614

Total vulnerabilities in the database

CVE-2025-61915

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user in the lpadmin group can use the cups web ui to change the config and insert a malicious line. Then the cupsd process which runs as root will parse the new config and cause an out-of-bound write. This issue has been patched in version 2.4.15.

Published: Nov 29, 2025
Updated: Nov 30, 2025
CVE: CVE-2025-61915
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6
AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

CWEs:

CWE-124
CWE-129

Affected Software
References

No affected software listed.

http://www.openwall.com/lists/oss-security/2025/11/27/5
https://github.com/OpenPrinting/cups/commit/db8d560262c22a21ee1e55dfd62fa98d9359bcb0
https://github.com/OpenPrinting/cups/releases/tag/v2.4.15
https://github.com/OpenPrinting/cups/security/advisories/GHSA-hxm8-vfpq-jrfc

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo