CCE-95401-6| Platform: cpe:/o:amazon:linux:2, cpe:/o:centos:centos:7, cpe:/o:oracle:linux:7, cpe:/o:oracle:linux:8, cpe:/o:redhat:enterprise_linux:7, cpe:/o:redhat:enterprise_linux:8, cpe:/o:redhat:enterprise_linux:9 | Date: (C)2021-03-05 (M)2023-07-04 |
Description
The Common Unix Print System (CUPS) provides the ability to print to both local and network printers. A system running CUPS can also accept print jobs from remote systems and print them to local printers. It also provides a web based remote administration capability.
Rationale
If the system does not need to print jobs or accept print jobs from other systems, it is recommended that CUPS be disabled to reduce the potential attack surface.
Audit
Run the following command to verify cups is not installed:
# rpm -qa | grep cups
Verify there is no package returned.
Remediation
Run the following command to disable cups:
yum remove cups
Impact
Removing CUPS will prevent printing from the system, a common task for workstation systems.
Parameter:
[yes/no]
Technical Mechanism:
Run the following command to disable cups:
yum remove cups
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : 8.6 | Attack Vector: NETWORK |
| Exploit Score: 3.9 | Attack Complexity: LOW |
| Impact Score: 4.7 | Privileges Required: NONE |
| Severity: HIGH | User Interaction: NONE |
| Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H | Scope: UNCHANGED |
| | Confidentiality: LOW |
| | Integrity: LOW |
| | Availability: HIGH |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:72953 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:72364 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:72848 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:71998 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:68553 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:72638 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:84238 |
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:72741 |
