cvedb.io
CVE-2026-27447
MEDIUM · CVSS 4.8
EPSS exploitation probability: 0%
Published 2026-04-03T22:16:25.193 · Last modified 2026-06-17T10:27:10.447

Summary

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, CUPS daemon (cupsd) contains an authorization bypass vulnerability due to case-insensitive username comparison during authorization checks. The vulnerability allows an unprivileged user to gain unauthorized access to restricted operations by using a user with a username that differs only in case from an authorized user. At time of publication, there are no publicly available patches.

Affected products

openprinting — cups

Does this affect you?

Add your gear to cvedb and we'll alert you only when openprinting ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.