Search
Collection
Category
Tag
Blog
Pricing
Submit

Newsletter

Join the Community

Subscribe to our newsletter for the latest news and updates

Email

AISecKit

Curated AI security tools & LLM safety resources for cybersecurity professionals

Product

Search
Collection
Category
Tag

Resources

Blog
Pricing
Submit

Tools

🔥Marathons Tools

Company

About Us
Privacy Policy
Terms of Service
Sitemap

Copyright © 2026 All Rights Reserved.

Home
Category
CVE-2024-47176

CVE-2024-47176

Unauthenticated RCE on cups-browsed (exploit and nuclei template)

Introduction

Information

Publisher
AISecKit
Websitegithub.com
Published date2025/04/28

Categories

Incident Response Tools
Penetration Testing
Vulnerability Scanners

Tags

Exploit Development
Security Auditing
Vulnerability Disclosure

More Products

image of Phantom

DevSecOps ToolsPenetration TestingVulnerability Scanners

Phantom

A browser extension for SRC vulnerability mining, collecting sensitive information and suspicious clues from web pages.

Security Auditing Open Source Incident Response Vulnerability Scanning API Security+1

Exploiting AI

An introductory class on understanding AI security risks and mitigation strategies.

Prompt Injection Generative AI Red Team Testing Data Poisoning

Folly

Open-source LLM Prompt-Injection and Jailbreaking Playground for testing LLM security vulnerabilities.

Prompt Injection Open Source API Security Security Testing LLM Security+1

Detailed Introduction

CVE-2024-47176 is a critical vulnerability affecting the cups-browsed service in CUPS (Common Unix Printing System). This vulnerability allows for unauthenticated remote code execution (RCE) on systems running vulnerable versions of the cups-browsed package (version 2.0.1 or lower). The exploit leverages the service's trust in incoming packets, enabling attackers to execute arbitrary commands remotely when a user prints from a malicious printer server.

Key Features:

Exploit Template: Provides a nuclei template for easy exploitation.
Installation Instructions: Clear steps for setting up the environment and dependencies.
Usage Guide: Detailed commands for executing the exploit.
Discovery Tools: Methods for identifying vulnerable systems using tools like Nmap and Shodan.

Benefits:

Security Awareness: Highlights the risks associated with CUPS services and the importance of patching.
Educational Resource: Serves as a learning tool for security researchers and penetration testers.
Community Contribution: Open-source nature allows for community collaboration and improvement.

Highlights:

High Severity: Rated with a CVSS score of 8.3, indicating a significant security risk.
Public Exploit: Available for educational and research purposes, emphasizing responsible disclosure and usage.