"Highly Anticipated Linux Flaw Allows Remote Code Execution, but Less Serious Than Expected"
Researcher Simone Margaritelli has detailed an unpatched vulnerability that was expected to pose a significant threat to Linux systems but turned out to be less severe. The unauthenticated Remote Code Execution (RCE) vulnerability said to affect all GNU/Linux systems had been assigned a CVSS score of 9.9, leading the cybersecurity industry to believe it would be a high-impact issue. Margaritelli found zero-day Common UNIX Printing System (CUPS) vulnerabilities that enable remote, unauthenticated attackers to execute code on vulnerable Linux and Unix-like systems. CUPS is an open source printing system developed by OpenPrinting that enables a computer to serve as a print server. This article continues to discuss the unpatched vulnerability that was expected to pose a serious threat to many Linux systems.
Submitted by grigby1