Home > Vulnerability Database > CVE-2023-32324

Mend.io Vulnerability Database

CVE-2023-32324

Date: June 1, 2023

OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a remote attacker to launch a denial of service (DoS) attack. A buffer overflow vulnerability in the function "format_log_line" could allow remote attackers to cause a DoS on the affected system. Exploitation of the vulnerability can be triggered when the configuration file "cupsd.conf" sets the value of "loglevel "to "DEBUG". No known patches or workarounds exist at time of publication.

Language: C

Severity Score

7.5

Related Resources (7)

Url: https://nvd.nist.gov/vuln/detail/CVE-2023-32324

Url: https://security-tracker.debian.org/tracker/CVE-2023-32324

Url: https://security.alpinelinux.org/vuln/CVE-2023-32324

Url: https://github.com/OpenPrinting/cups/security/advisories/GHSA-cxc6-w2g7-69p7

Url: https://access.redhat.com/security/cve/CVE-2023-32324

Url: https://lists.debian.org/debian-lts-announce/2023/06/msg00001.html

Url: https://www.mend.io/vulnerability-database/CVE-2023-32324

Severity Score

7.5

Weakness Type (CWE)

Out-of-bounds Write

CWE-787

Heap-based Buffer Overflow

CWE-122

CVSS v3.1

Base Score:	7.5
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	NONE
Integrity (I):	NONE
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2023-32324

Date: June 1, 2023

Language: C

Severity Score

Related Resources (7)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?