Home > Vulnerability Database > CVE-2025-58060

Mend.io Vulnerability Database

CVE-2025-58060

Good to know:

Date: September 11, 2025

Authentication bypass in cups prior to 2.4.13 - Any configuration that allows an |AuthType| that is not |Basic| is affected. Versions lower than 2.4.3 are affected in less serious way - if attacker provides valid credentials for Basic authentication and cupsd requires Kerberos authentication on resource (and vice versa), the attack is still possible because cupsd ignores its own authentication settings if the creds are valid. In those cases, the prerequisite for the attack is the attacker would obtain allowed user credentials/Kerberos ticket, which is more difficult.

Severity Score

8.0

Related Resources (6)

Url: https://seclists.org/oss-sec/2025/q3/165

Url: https://github.com/OpenPrinting/cups/commit/429756fd1355bfc91484ff3f04960d4a6b2b155a

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-58060

Url: https://github.com/OpenPrinting/cups/commit/595d691075b1d396d2edfaa0a8fd0873a0a1f221

Url: https://github.com/OpenPrinting/cups/security/advisories/GHSA-4c68-qgrh-rmmq

Url: https://www.mend.io/vulnerability-database/CVE-2025-58060

Severity Score

8.0

Weakness Type (CWE)

Improper Authentication

CWE-287

Authentication Bypass Using an Alternate Path or Channel

CWE-288

Top Fix

Upgrade Version

Upgrade to version https://github.com/OpenPrinting/cups.git - v2.4.13

Learn More

CVSS v3.1

Base Score:	8.0
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2025-58060

Good to know:

Date: September 11, 2025

Severity Score

Related Resources (6)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

Do you need more information?