CVE-2026-34990Improper Authentication in Cups

CWE-287Improper AuthenticationCWE-73External Control of File Name or Path7 documents7 sources
Severity
5.0MEDIUMNVD
EPSS
0.0%
top 98.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Openprinting Cups
Timeline
PublishedApr 3

Description

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, a local unprivileged user can coerce cupsd into authenticating to an attacker-controlled localhost IPP service with a reusable Authorization: Local ... token. That token is enough to drive /admin/ requests on localhost, and the attacker can combine CUPS-Create-Local-Printer with printer-is-shared=true to persist a file:///... queue even though the normal FileDevice p

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:N/SC:H/SI:H/SA:L

Affected Packages1 packages

CVEListV5openprinting/cups2.4.16

🔴Vulnerability Details

2
CVEList
OpenPrinting CUPS: Local print admin token disclosure using temporary printers2026-04-03
OSV
CVE-2026-34990: OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems2026-04-03

📋Vendor Advisories

3
Red Hat
cups: OpenPrinting CUPS: Privilege escalation via arbitrary file overwrite due to coerced authentication2026-04-03
Microsoft
OpenPrinting CUPS: Local print admin token disclosure using temporary printers2026-04-02
Debian
CVE-2026-34990: cups - OpenPrinting CUPS is an open source printing system for Linux and other Unix-lik...2026

🕵️Threat Intelligence

1
Wiz
CVE-2026-34990 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2026-34990 — Improper Authentication in Cups | cvebase