CVE-2025-61915

MEDIUM
Published Nov 29, 2025 Modified Dec 4, 2025 CWE-124 CWE-129

Description

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user in the lpadmin group can use the cups web ui to change the config and insert a malicious line. Then the cupsd process which runs as root will parse the new config and cause an out-of-bound write. This issue has been patched in version 2.4.15.

CVSS v3.1 Score

6.0
MEDIUM
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

Weakness Type (CWE)

CWE-124 CWE-124
CWE-129 CWE-129

Affected Products

Vendor Product
openprinting cups
opengroup unix

References

Frequently Asked Questions

What is CVE-2025-61915? +
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a user in the lpadmin group can use the cups web ui to change the config and insert a malicious line. Then the cupsd process which runs as root will parse the new config and cause an out-of-bound write. This issue has been patched in version 2.4.15. It has a CVSS v3.1 base score of 6.0 (MEDIUM).
How severe is CVE-2025-61915? +
CVE-2025-61915 has a CVSS v3.1 score of 6.0 out of 10, rated MEDIUM. This is a medium-severity vulnerability that should be remediated as part of regular maintenance.
What products are affected by CVE-2025-61915? +
CVE-2025-61915 affects products from opengroup, openprinting, specifically: cups, unix. Check the affected products table above for specific version ranges.
How do I check if I'm vulnerable to CVE-2025-61915? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

CVE-2024-36343

Improper input validation in the System Management Mode (SMM) communications buffer could allow a privileged attacker to perform an out …
CVE-2023-25610 9.8

A buffer underwrite ('buffer underflow') vulnerability in the administrative interface of Fortinet FortiOS version 7.2.0 through 7.2.3, version 7.0.0 through …
CVE-2025-27439 8.5

Buffer underflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network …
CVE-2025-27440 8.5

Heap overflow in some Zoom Workplace Apps may allow an authenticated user to conduct an escalation of privilege via network …
CVE-2026-34253 8.2

A buffer underflow vulnerability has been identified in the ogg123 utility from the vorbis-tools 1.4.3 package in function remotethread in …
CVE-2025-62786 8.1

Wazuh is a free and open source platform used for threat prevention, detection, and response. A heap-based out-of-bounds WRITE occurs …

Don't wait for an exploit

Scan your website for vulnerabilities like CVE-2025-61915 — free, no signup required.

Start Free Scan