The CUPID vulnerability refers to a series of recently identified security flaws in the Common UNIX Printing System (CUPS). These vulnerabilities, including CVE-2024-47176 and CVE-2024-47177, allow attackers to potentially execute remote code on systems using vulnerable versions of CUPS. This can be exploited by sending malicious Internet Printing Protocol (IPP) requests, leading to unauthorized access or control of affected devices. The vulnerabilities are considered critical due to their widespread impact across UNIX-like systems, including Linux and macOS.
Sources for more information:
- Trustwave
- Talos Intelligence
- CVE Details: CVE-2024-47176, CVE-2024-47177