CVE-2014-2657
published 2014-04-28CVE-2014-2657: Unspecified vulnerability in the print release functionality in PaperCut MF before 14.1 (Build 26983) has unknown impact and remote vectors, related to…
PriorityP428high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
1.10%
61.4th percentile
Unspecified vulnerability in the print release functionality in PaperCut MF before 14.1 (Build 26983) has unknown impact and remote vectors, related to embedded MFPs.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| papercut | papercut_mf | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
PaperCut MF 14.1 Remote Code Execution (XFDB-92650 / SBV-44685)
vuldb·2026-05-12·CVSS 7.5
CVE-2014-2657 [HIGH] PaperCut MF 14.1 Remote Code Execution (XFDB-92650 / SBV-44685)
A vulnerability described as critical has been identified in PaperCut MF 14.1. Affected is an unknown function. Executing a manipulation can lead to Remote Code Execution.
This vulnerability appears as CVE-2014-2657. The attack may be performed from remote. There is no available exploit.
Upgrading the affected component is recommended.
GHSA
GHSA-rqmg-c742-2pqx: Unspecified vulnerability in the print release functionality in PaperCut MF before 14
ghsa_unreviewed·2022-05-17
CVE-2014-2657 [HIGH] GHSA-rqmg-c742-2pqx: Unspecified vulnerability in the print release functionality in PaperCut MF before 14
Unspecified vulnerability in the print release functionality in PaperCut MF before 14.1 (Build 26983) has unknown impact and remote vectors, related to embedded MFPs.
Kernel
vt: selection, close sel_buffer race
kernel_security·2020-02-10·CVSS 7.1
CVE-2020-8648 [HIGH] vt: selection, close sel_buffer race
vt: selection, close sel_buffer race
syzkaller reported this UAF:
BUG: KASAN: use-after-free in n_tty_receive_buf_common+0x2481/0x2940 drivers/tty/n_tty.c:1741
Read of size 1 at addr ffff8880089e40e9 by task syz-executor.1/13184
CPU: 0 PID: 13184 Comm: syz-executor.1 Not tainted 5.4.7 #1
Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014
Call Trace:
...
kasan_report+0xe/0x20 mm/kasan/common.c:634
n_tty_receive_buf_common+0x2481/0x2940 drivers/tty/n_tty.c:1741
tty_ldisc_receive_buf+0xac/0x190 drivers/tty/tty_buffer.c:461
paste_selection+0x297/0x400 drivers/tty/vt/selection.c:372
tioclinux+0x20d/0x4e0 drivers/tty/vt/vt.c:3044
vt_ioctl+0x1bcf/0x28d0 drivers/tty/vt/vt_ioctl.c:364
tty_ioctl+0x525/0x15a0 drivers/tty/tty_io.c:2657
vfs_ioctl fs/ioctl.c:47 [inline]
I
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2014-04-28
Published