Search

Find a vulnerability

Search criteria

    58 vulnerabilities found for papercut_mf by papercut

    CVE-2026-6418 (GCVE-0-2026-6418)

    Vulnerability from nvd – Published: 2026-05-05 06:21 – Updated: 2026-06-16 05:03
    VLAI
    Title
    PaperCut NG/MF: Path Traversal in Shared Account Synchronization
    Summary
    An issue was discovered in the Shared Account Synchronization component of PaperCut MF (version 25.0.4). The application allows administrative users to configure a source path for account data synchronization. Due to a lack of proper path validation and sanitization, an authenticated user with administrative privileges can specify arbitrary file paths on the local file system. This allows for the enumeration of directory structures and the unauthorized reading of sensitive text-based configuration or system files. When the synchronization process is triggered, the application attempts to parse the contents of the specified file, subsequently exposing the data within the application's account management interface. This vulnerability could lead to the disclosure of sensitive system information or configuration details, depending on the permissions of the service account under which the application is running.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-36 - Absolute path traversal
    • CWE-552 - Files or directories accessible to external parties
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG/MF Affected: 0 , < 25.0.11 (semver)
    Create a notification for this product.
    Credits
    Alexander Shepard
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-6418",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-05T12:41:28.377029Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-05T12:41:36.541Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "PaperCut NG/MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "lessThan": "25.0.11",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Alexander Shepard"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eAn issue was discovered in the Shared Account Synchronization component of PaperCut MF (version 25.0.4). The application allows administrative users to configure a source path for account data synchronization.\u003c/p\u003e\u003cp\u003eDue to a lack of proper path validation and sanitization, an authenticated user with administrative privileges can specify arbitrary file paths on the local file system. This allows for the enumeration of directory structures and the unauthorized reading of sensitive text-based configuration or system files.\u003c/p\u003e\u003cp\u003eWhen the synchronization process is triggered, the application attempts to parse the contents of the specified file, subsequently exposing the data within the application\u0027s account management interface. This vulnerability could lead to the disclosure of sensitive system information or configuration details, depending on the permissions of the service account under which the application is running.\u003c/p\u003e"
                }
              ],
              "value": "An issue was discovered in the Shared Account Synchronization component of PaperCut MF (version 25.0.4). The application allows administrative users to configure a source path for account data synchronization.\n\n\n\nDue to a lack of proper path validation and sanitization, an authenticated user with administrative privileges can specify arbitrary file paths on the local file system. This allows for the enumeration of directory structures and the unauthorized reading of sensitive text-based configuration or system files.\n\n\n\nWhen the synchronization process is triggered, the application attempts to parse the contents of the specified file, subsequently exposing the data within the application\u0027s account management interface. This vulnerability could lead to the disclosure of sensitive system information or configuration details, depending on the permissions of the service account under which the application is running."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "PRESENT",
                "attackVector": "NETWORK",
                "baseScore": 4.6,
                "baseSeverity": "MEDIUM",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "HIGH",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "HIGH",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:N/VA:N/SC:H/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-36",
                  "description": "CWE-36 Absolute path traversal",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-552",
                  "description": "CWE-552 Files or directories accessible to external parties",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-16T05:03:05.377Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/papercut-ng-mf-and-papercut-hive-security-bulletin-may-2026/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "PaperCut NG/MF: Path Traversal in Shared Account Synchronization",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2026-6418",
        "datePublished": "2026-05-05T06:21:37.345Z",
        "dateReserved": "2026-04-16T03:15:03.794Z",
        "dateUpdated": "2026-06-16T05:03:05.377Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-6180 (GCVE-0-2026-6180)

    Vulnerability from nvd – Published: 2026-05-05 06:19 – Updated: 2026-05-05 14:13
    VLAI
    Title
    PaperCut MF: Card truncation on HP readers
    Summary
    A race condition exists in PaperCut MF when processing badge-swipe data from certain HP multifunction devices. Under specific network conditions involving dropped packets and out-of-order sequence counters, the server may incorrectly process fragmented data chunks. If a sequence reset notification fails to reach the server, the server may reject the initial data chunk while erroneously accepting subsequent chunks before a connection reset completes. This leads to the registration of a truncated badge ID string. While this typically results in an authentication failure, the vulnerability is compounded in environments utilizing custom badge-ID post-processing scripts. In such configurations, the truncated string may be transformed into a valid ID belonging to a different user, leading to unauthorized session establishment (Incorrect User Login) on the device.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-367 - Time-of-check time-of-use (TOCTOU) race condition
    • CWE-20 - Improper input validation
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG/MF Affected: 0 , < 24.1.9 (semver)
    Affected: 0 , < 25.0.10 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-6180",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-05T13:47:26.998229Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-05T14:13:10.635Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "PaperCut NG/MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "lessThan": "24.1.9",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "25.0.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eA race condition exists in PaperCut MF when processing badge-swipe data from certain HP multifunction devices. Under specific network conditions involving dropped packets and out-of-order sequence counters, the server may incorrectly process fragmented data chunks. If a sequence reset notification fails to reach the server, the server may reject the initial data chunk while erroneously accepting subsequent chunks before a connection reset completes.\u003c/p\u003e\u003cp\u003eThis leads to the registration of a truncated badge ID string. While this typically results in an authentication failure, the vulnerability is compounded in environments utilizing custom badge-ID post-processing scripts. In such configurations, the truncated string may be transformed into a valid ID belonging to a different user, leading to unauthorized session establishment (Incorrect User Login) on the device.\u003c/p\u003e"
                }
              ],
              "value": "A race condition exists in PaperCut MF when processing badge-swipe data from certain HP multifunction devices. Under specific network conditions involving dropped packets and out-of-order sequence counters, the server may incorrectly process fragmented data chunks. If a sequence reset notification fails to reach the server, the server may reject the initial data chunk while erroneously accepting subsequent chunks before a connection reset completes.\n\n\n\nThis leads to the registration of a truncated badge ID string. While this typically results in an authentication failure, the vulnerability is compounded in environments utilizing custom badge-ID post-processing scripts. In such configurations, the truncated string may be transformed into a valid ID belonging to a different user, leading to unauthorized session establishment (Incorrect User Login) on the device."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "PRESENT",
                "attackVector": "PHYSICAL",
                "baseScore": 4.1,
                "baseSeverity": "MEDIUM",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "LOW",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "LOW",
                "subIntegrityImpact": "LOW",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:P/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:L/SI:L/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-367",
                  "description": "CWE-367 Time-of-check time-of-use (TOCTOU) race condition",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper input validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-05T06:19:44.725Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/papercut-ng-mf-and-papercut-hive-security-bulletin-may-2026/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "PaperCut MF: Card truncation on HP readers",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2026-6180",
        "datePublished": "2026-05-05T06:19:44.725Z",
        "dateReserved": "2026-04-13T05:21:02.099Z",
        "dateUpdated": "2026-05-05T14:13:10.635Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-5115 (GCVE-0-2026-5115)

    Vulnerability from nvd – Published: 2026-03-31 00:54 – Updated: 2026-03-31 13:59
    VLAI
    Title
    Session hijacking in PaperCut NG/MF embedded application for Konica Minolta devices
    Summary
    The PaperCut NG/MF (specifically, the embedded application for Konica Minolta devices) is vulnerable to session hijacking. The PaperCut NG/MF Embedded application is a software interface that runs directly on the touch screen of a multi-function device. It was internally discovered that the communication channel between the embedded application and the server was insecure, which could leak data including sensitive information that may be used to mount an  attack on the device. Such an attack could potentially be used to steal data or to perform a phishing attack on the end user.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-319 - Cleartext transmission of sensitive information
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut Papercut NG/MF Affected: 0 , < 25.0.5 (semver)
    Affected: 0 , < 25.0.9 (KM certified) (custom)
    Create a notification for this product.
    Credits
    Xavier Gibbon
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-5115",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-31T13:59:29.117987Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-31T13:59:35.485Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Papercut NG/MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "lessThan": "25.0.5",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "25.0.9 (KM certified)",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Xavier Gibbon"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eThe PaperCut NG/MF (specifically, the embedded application for Konica Minolta devices) is vulnerable to session hijacking. The PaperCut NG/MF Embedded application is a software interface that runs directly on the touch screen of a multi-function device.\u003c/p\u003e\u003cp\u003e\u003cspan\u003eIt was internally discovered that the communication channel between the embedded application and the server was insecure, which could leak data including sensitive information that may be used to mount an \u0026nbsp;attack on the device.\u003c/span\u003e\u003cspan\u003e\u0026nbsp;Such an attack could potentially be used to steal data or to perform a phishing attack on the end user.\u003c/span\u003e\u003c/p\u003e"
                }
              ],
              "value": "The PaperCut NG/MF (specifically, the embedded application for Konica Minolta devices) is vulnerable to session hijacking. The PaperCut NG/MF Embedded application is a software interface that runs directly on the touch screen of a multi-function device.\n\nIt was internally discovered that the communication channel between the embedded application and the server was insecure, which could leak data including sensitive information that may be used to mount an \u00a0attack on the device.\u00a0Such an attack could potentially be used to steal data or to perform a phishing attack on the end user."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-593",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-593 Session Hijacking"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "HIGH",
                "attackRequirements": "NONE",
                "attackVector": "ADJACENT",
                "baseScore": 3.6,
                "baseSeverity": "LOW",
                "exploitMaturity": "UNREPORTED",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "HIGH",
                "subIntegrityImpact": "NONE",
                "userInteraction": "PASSIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:U",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-319",
                  "description": "CWE-319 Cleartext transmission of sensitive information",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-31T01:08:05.715Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/papercut-ng-mf-security-bulletin-march-2026/"
            }
          ],
          "source": {
            "discovery": "INTERNAL"
          },
          "title": "Session hijacking in PaperCut NG/MF embedded application for Konica Minolta devices",
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2026-5115",
        "datePublished": "2026-03-31T00:54:48.889Z",
        "dateReserved": "2026-03-29T22:32:07.583Z",
        "dateUpdated": "2026-03-31T13:59:35.485Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4794 (GCVE-0-2026-4794)

    Vulnerability from nvd – Published: 2026-03-31 00:39 – Updated: 2026-03-31 14:03
    VLAI
    Title
    Multiple cross-site scripting (XSS) vulnerabilities in PaperCut NG/MF
    Summary
    Multiple cross-site scripting (XSS) vulnerabilities in PaperCut NG/MF before 25.0.10 allow authenticated administrator users to inject arbitrary web script or HTML code via different UI fields. This could be used to compromise other admininistrator's sessions or perform unauthorized actions via the administrator's authenticated context (e.g. requires an active login session).
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper neutralization of input during web page generation ('cross-site scripting')
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG/MF Affected: 0 , < 25.0.10 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4794",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-31T14:03:53.639112Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-31T14:03:59.735Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows",
                "MacOS",
                "Linux"
              ],
              "product": "PaperCut NG/MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "lessThan": "25.0.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Multiple cross-site scripting (XSS) vulnerabilities in PaperCut NG/MF before 25.0.10\u0026nbsp;allow authenticated administrator users to inject arbitrary web script or HTML code via different UI fields. This could be used to compromise other admininistrator\u0027s sessions or perform unauthorized actions via the administrator\u0027s authenticated context (e.g. requires an active login session)."
                }
              ],
              "value": "Multiple cross-site scripting (XSS) vulnerabilities in PaperCut NG/MF before 25.0.10\u00a0allow authenticated administrator users to inject arbitrary web script or HTML code via different UI fields. This could be used to compromise other admininistrator\u0027s sessions or perform unauthorized actions via the administrator\u0027s authenticated context (e.g. requires an active login session)."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-591",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-591 Reflected XSS"
                }
              ]
            },
            {
              "capecId": "CAPEC-592",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-592 Stored XSS"
                }
              ]
            },
            {
              "capecId": "CAPEC-63",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-63 Cross-Site Scripting (XSS)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "PRESENT",
                "attackVector": "NETWORK",
                "baseScore": 2.1,
                "baseSeverity": "LOW",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "LOW",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "LOW",
                "subIntegrityImpact": "LOW",
                "userInteraction": "PASSIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper neutralization of input during web page generation (\u0027cross-site scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-31T00:39:56.135Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/papercut-ng-mf-security-bulletin-march-2026/"
            }
          ],
          "source": {
            "discovery": "EXTERNAL"
          },
          "title": "Multiple cross-site scripting (XSS) vulnerabilities in PaperCut NG/MF",
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2026-4794",
        "datePublished": "2026-03-31T00:39:56.135Z",
        "dateReserved": "2026-03-25T00:52:13.130Z",
        "dateUpdated": "2026-03-31T14:03:59.735Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-9672 (GCVE-0-2024-9672)

    Vulnerability from nvd – Published: 2024-12-09 23:49 – Updated: 2024-12-10 16:08
    VLAI
    Title
    Reflected XSS in PaperCut MF
    Summary
    A reflected cross-site scripting (XSS) vulnerability exists in PaperCut NG/MF. This issue can be used to execute specially created JavaScript payloads in the browser. A user must click on a malicious link for this issue to occur.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-917 - Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut MF Affected: 0 , < 24.1 (custom)
    Create a notification for this product.
    Date Public
    2024-12-09 23:49
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-9672",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-10T16:08:26.031308Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-10T16:08:48.582Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows",
                "MacOS",
                "Linux"
              ],
              "product": "PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "24.1",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "24.1",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2024-12-09T23:49:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: transparent;\"\u003eA reflected cross-site scripting (XSS) vulnerability exists in PaperCut NG/MF. This issue can be used to execute specially created JavaScript payloads in the browser. A user must click on a malicious link for this issue to occur. \u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "A reflected cross-site scripting (XSS) vulnerability exists in PaperCut NG/MF. This issue can be used to execute specially created JavaScript payloads in the browser. A user must click on a malicious link for this issue to occur."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-591",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-591 Reflected XSS"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "HIGH",
                "subIntegrityImpact": "HIGH",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:H/SI:H/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-917",
                  "description": "CWE-917 Improper Neutralization of Special Elements used in an Expression Language Statement (\u0027Expression Language Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-12-09T23:49:55.535Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/security-bulletin-december-2024/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Reflected XSS in PaperCut MF",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-9672",
        "datePublished": "2024-12-09T23:49:55.535Z",
        "dateReserved": "2024-10-09T00:06:26.925Z",
        "dateUpdated": "2024-12-10T16:08:48.582Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-8405 (GCVE-0-2024-8405)

    Vulnerability from nvd – Published: 2024-09-26 01:36 – Updated: 2024-09-26 15:02
    VLAI
    Title
    Arbitrary File Creation in PaperCut NG/MF Web Print leading to a Denial of Service attack
    Summary
    An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled. This specific flaw exists within the web-print.exe process, which can incorrectly create files that don’t exist when a maliciously formed payload is provided. This can be used to flood disk space and result in a Denial of Service (DoS) attack. Note: This CVE has been split from CVE-2024-4712.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.9 (custom)
    Create a notification for this product.
    Date Public
    2024-09-26 01:35
    Credits
    Amol Dosanjh of Trend Micro
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-8405",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-26T15:01:57.724249Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-26T15:02:10.145Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "Web Print"
              ],
              "platforms": [
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.9",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.9",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Amol Dosanjh of Trend Micro"
            }
          ],
          "datePublic": "2024-09-26T01:35:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eAn arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled. \u003c/span\u003e\u003cspan style=\"background-color: transparent;\"\u003eThis specific flaw exists within the web-print.exe process, which can incorrectly create files that don\u2019t exist when a maliciously formed payload is provided. This can be used to flood disk space and result in a Denial of Service (DoS) attack.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eNote: \u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eThis CVE has been split from CVE-2024-4712.\u003c/span\u003e\u003c/p\u003e"
                }
              ],
              "value": "An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled. This specific flaw exists within the web-print.exe process, which can incorrectly create files that don\u2019t exist when a maliciously formed payload is provided. This can be used to flood disk space and result in a Denial of Service (DoS) attack.\n\nNote: \n\nThis CVE has been split from CVE-2024-4712."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-125",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-125 Flooding"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 6.1,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-77",
                  "description": "CWE-77 Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-26T01:36:26.364Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-May-2024/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Arbitrary File Creation in PaperCut NG/MF Web Print leading to a Denial of Service attack",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-8405",
        "datePublished": "2024-09-26T01:36:26.364Z",
        "dateReserved": "2024-09-04T05:55:45.849Z",
        "dateUpdated": "2024-09-26T15:02:10.145Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-8404 (GCVE-0-2024-8404)

    Vulnerability from nvd – Published: 2024-09-26 01:42 – Updated: 2025-05-13 01:39
    VLAI
    Title
    Arbitrary File Deletion in PaperCut NG/MF Web Print Hot folder
    Summary
    An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege code directly on the server via the web-print-hot-folder. Important: In most installations, this risk is mitigated by the default Windows Server configuration, which restricts local login access to Administrators only. However, this vulnerability could pose a risk to customers who allow non-administrative users to log into the local console of the Windows environment hosting the PaperCut NG/MF application server. Update: This CVE has been updated in May 2025 to update the fixed version and fix process. Please refer to the May 2025 Security Bulletin. Note: This CVE has been split from CVE-2024-3037.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 24.1.7 (custom)
    Create a notification for this product.
    papercut papercut_mf Affected: 0 , < 23.0.9 (custom)
        cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*
    Create a notification for this product.
    papercut papercut_ng Affected: 0 , < 23.0.9 (custom)
        cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-09-26 01:35
    Credits
    Amol Dosanjh of Trend Micro Nicholas Zubrisky (@NZubrisky) of Trend Micro Michael DePlante (@izobashi) of Trend Micro's ZDI
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "papercut_mf",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.9",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "papercut_ng",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.9",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-8404",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-26T14:59:11.788417Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-26T15:01:21.951Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "Web Print"
              ],
              "platforms": [
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "24.1.7",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "24.1.7",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Amol Dosanjh of Trend Micro"
            },
            {
              "lang": "en",
              "type": "finder",
              "value": "Nicholas Zubrisky (@NZubrisky) of Trend Micro"
            },
            {
              "lang": "en",
              "type": "finder",
              "value": "Michael DePlante (@izobashi) of Trend Micro\u0027s ZDI"
            }
          ],
          "datePublic": "2024-09-26T01:35:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eAn arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege code directly on the server via the web-print-hot-folder. \u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eImportant: In most installations, this risk is mitigated by the default Windows Server configuration, which restricts local login access to Administrators only. However, this vulnerability could pose a risk to customers who allow non-administrative users to log into the local console of the Windows environment hosting the PaperCut NG/MF application server.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eUpdate:\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eThis CVE has been updated in May 2025 to update the fixed version and fix process. Please refer to the May 2025 Security Bulletin.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eNote: \u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eThis CVE has been split from CVE-2024-3037.\u003c/span\u003e\u003cbr\u003e\u003c/p\u003e"
                }
              ],
              "value": "An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege code directly on the server via the web-print-hot-folder. \n\nImportant: In most installations, this risk is mitigated by the default Windows Server configuration, which restricts local login access to Administrators only. However, this vulnerability could pose a risk to customers who allow non-administrative users to log into the local console of the Windows environment hosting the PaperCut NG/MF application server.\n\nUpdate:\n\nThis CVE has been updated in May 2025 to update the fixed version and fix process. Please refer to the May 2025 Security Bulletin.\n\nNote: \n\nThis CVE has been split from CVE-2024-3037."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-165",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-165 File Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-59",
                  "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-05-13T01:39:33.742Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-May-2025/"
            },
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-May-2024/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Arbitrary File Deletion in PaperCut NG/MF Web Print Hot folder",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-8404",
        "datePublished": "2024-09-26T01:42:49.400Z",
        "dateReserved": "2024-09-04T05:55:44.460Z",
        "dateUpdated": "2025-05-13T01:39:33.742Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-4712 (GCVE-0-2024-4712)

    Vulnerability from nvd – Published: 2024-05-14 00:13 – Updated: 2024-09-26 01:27
    VLAI
    Title
    Arbitrary File Creation in PaperCut NG/MF Web Print Image Handler
    Summary
    An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled. This specific flaw exists within the image-handler process, which can incorrectly create files that don’t exist when a maliciously formed payload is provided. This can lead to local privilege escalation. Note: This CVE has been split into two (CVE-2024-4712 and CVE-2024-8405) and it’s been rescored with a "Privileges Required (PR)" rating of low, and “Attack Complexity (AC)” rating of low, reflecting the worst-case scenario where an Administrator has granted local login access to standard network users on the host server.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.9 (custom)
    Create a notification for this product.
    Credits
    Nicholas Zubrisky (@NZubrisky) of Trend Micro Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-4712",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-06-20T19:40:02.500241Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-20T19:40:12.502Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T20:47:41.691Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/security-bulletin-may-2024/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "Web Print"
              ],
              "platforms": [
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.9",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.9",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Nicholas Zubrisky (@NZubrisky) of Trend Micro Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eAn arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled.\u0026nbsp;\u003c/span\u003e\u003cspan style=\"background-color: transparent;\"\u003eThis specific flaw exists within the image-handler process, which can incorrectly create files that don\u2019t exist when a maliciously formed payload is provided. This can lead to local privilege escalation.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eNote: \u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eThis CVE has been split into two (CVE-2024-4712 and CVE-2024-8405) and it\u2019s been rescored \u003c/span\u003e\u003cspan style=\"background-color: transparent;\"\u003ewith a \"Privileges Required (PR)\" rating of low, and \u201cAttack Complexity (AC)\u201d rating of low, reflecting the worst-case scenario where an Administrator has granted local login access to standard network users on the host server.\u003c/span\u003e\u003c/p\u003e\u003cbr\u003e\u003cbr\u003e"
                }
              ],
              "value": "An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled.\u00a0This specific flaw exists within the image-handler process, which can incorrectly create files that don\u2019t exist when a maliciously formed payload is provided. This can lead to local privilege escalation.\n\nNote: \n\nThis CVE has been split into two (CVE-2024-4712 and CVE-2024-8405) and it\u2019s been rescored with a \"Privileges Required (PR)\" rating of low, and \u201cAttack Complexity (AC)\u201d rating of low, reflecting the worst-case scenario where an Administrator has granted local login access to standard network users on the host server."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-165",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-165 File Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-77",
                  "description": "CWE-77 Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-26T01:27:50.169Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-May-2024/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Arbitrary File Creation in PaperCut NG/MF Web Print Image Handler",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-4712",
        "datePublished": "2024-05-14T00:13:47.600Z",
        "dateReserved": "2024-05-10T05:15:31.461Z",
        "dateUpdated": "2024-09-26T01:27:50.169Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-3037 (GCVE-0-2024-3037)

    Vulnerability from nvd – Published: 2024-05-14 00:12 – Updated: 2024-10-07 20:27
    VLAI
    Title
    Arbitrary File Deletion in PaperCut NG/MF Web Print
    Summary
    An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege code directly on the server. Important: In most installations, this risk is mitigated by the default Windows Server configuration, which typically restricts local login access to Administrators only. However, this vulnerability could pose a risk to customers who allow non-administrative users to log in to the local console of the Windows environment hosting the PaperCut NG/MF application server. Note: This CVE has been split into two separate CVEs (CVE-2024-3037 and CVE-2024-8404) and it’s been rescored with a "Privileges Required (PR)" rating of low, and “Attack Complexity (AC)” rating of low, reflecting the worst-case scenario where an Administrator has granted local login access to standard users on the host server.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.9 (custom)
    Create a notification for this product.
    papercut papercut_ng Affected: 0 , < 23.0.9 (custom)
        cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*
    Create a notification for this product.
    papercut papercut_mf Affected: 0 , < 23.0.9 (custom)
        cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Credits
    Nicholas Zubrisky (@NZubrisky) Michael DePlante(@izobashi) of Trend Micro's ZDI
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T19:32:42.646Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/security-bulletin-may-2024/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "papercut_ng",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.9",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "papercut_mf",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.9",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-3037",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-07T20:25:16.955265Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-07T20:27:00.841Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "Web Print"
              ],
              "platforms": [
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.9",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.9",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Nicholas Zubrisky (@NZubrisky)"
            },
            {
              "lang": "en",
              "type": "finder",
              "value": "Michael DePlante(@izobashi) of Trend Micro\u0027s ZDI"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eAn arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege code directly on the server. \u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eImportant: In most installations, this risk is mitigated by the default Windows Server configuration, which typically restricts local login access to Administrators only. However, this vulnerability could pose a risk to customers who allow non-administrative users to log in to the local console of the Windows environment hosting the PaperCut NG/MF application server.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eNote: This CVE has been split into two separate CVEs (CVE-2024-3037 and CVE-2024-8404) and it\u2019s been rescored with a \"Privileges Required (PR)\" rating of low, and \u201cAttack Complexity (AC)\u201d rating of low, reflecting the worst-case scenario where an Administrator has granted local login access to standard users on the host server.\u003c/span\u003e\u003c/p\u003e"
                }
              ],
              "value": "An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege code directly on the server. \n\nImportant: In most installations, this risk is mitigated by the default Windows Server configuration, which typically restricts local login access to Administrators only. However, this vulnerability could pose a risk to customers who allow non-administrative users to log in to the local console of the Windows environment hosting the PaperCut NG/MF application server.\n\nNote: This CVE has been split into two separate CVEs (CVE-2024-3037 and CVE-2024-8404) and it\u2019s been rescored with a \"Privileges Required (PR)\" rating of low, and \u201cAttack Complexity (AC)\u201d rating of low, reflecting the worst-case scenario where an Administrator has granted local login access to standard users on the host server."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-165",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-165 File Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-59",
                  "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-26T01:15:01.885Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-May-2024/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Arbitrary File Deletion in PaperCut NG/MF Web Print",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-3037",
        "datePublished": "2024-05-14T00:12:37.696Z",
        "dateReserved": "2024-03-28T04:33:02.602Z",
        "dateUpdated": "2024-10-07T20:27:00.841Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-39469 (GCVE-0-2023-39469)

    Vulnerability from nvd – Published: 2024-05-03 01:59 – Updated: 2024-08-02 18:10
    VLAI
    Title
    PaperCut NG External User Lookup Code Injection Remote Code Execution Vulnerability
    Summary
    PaperCut NG External User Lookup Code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PaperCut NG. Authentication is required to exploit this vulnerability. The specific flaw exists within the External User Lookup functionality. The issue results from the lack of proper validation of a user-supplied string before using it to execute Java code. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-21013.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-94 - Improper Control of Generation of Code ('Code Injection')
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    PaperCut NG Affected: 22.0.12
    Create a notification for this product.
    papercut papercut_ng Affected: 22.0.12
        cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2023-08-30 20:13
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "papercut_ng",
                "vendor": "papercut",
                "versions": [
                  {
                    "status": "affected",
                    "version": "22.0.12"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-39469",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-05-06T15:38:33.991469Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-04T17:27:06.117Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T18:10:20.806Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "ZDI-23-1285",
                "tags": [
                  "x_research-advisory",
                  "x_transferred"
                ],
                "url": "https://www.zerodayinitiative.com/advisories/ZDI-23-1285/"
              },
              {
                "name": "vendor-provided URL",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/SecurityBulletinJuly2023/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "NG",
              "vendor": "PaperCut",
              "versions": [
                {
                  "status": "affected",
                  "version": "22.0.12"
                }
              ]
            }
          ],
          "dateAssigned": "2023-08-02T21:44:31.439Z",
          "datePublic": "2023-08-30T20:13:29.538Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "PaperCut NG External User Lookup Code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PaperCut NG. Authentication is required to exploit this vulnerability.\n\nThe specific flaw exists within the External User Lookup functionality. The issue results from the lack of proper validation of a user-supplied string before using it to execute Java code. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-21013."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-94",
                  "description": "CWE-94: Improper Control of Generation of Code (\u0027Code Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-03T01:59:31.060Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-23-1285",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-23-1285/"
            },
            {
              "name": "vendor-provided URL",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.papercut.com/kb/Main/SecurityBulletinJuly2023/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Anonymous"
          },
          "title": "PaperCut NG External User Lookup Code Injection Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2023-39469",
        "datePublished": "2024-05-03T01:59:31.060Z",
        "dateReserved": "2023-08-02T21:37:23.123Z",
        "dateUpdated": "2024-08-02T18:10:20.806Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-1884 (GCVE-0-2024-1884)

    Vulnerability from nvd – Published: 2024-03-14 03:11 – Updated: 2024-08-28 15:12
    VLAI
    Title
    Server Side Request Forgery in PaperCut NG/MF
    Summary
    This is a Server-Side Request Forgery (SSRF) vulnerability in the PaperCut NG/MF server-side module that allows an attacker to induce the server-side application to make HTTP requests to an arbitrary domain of the attacker's choosing.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-918 - Server-Side Request Forgery (SSRF)
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
    Create a notification for this product.
    papercut papercut_ng Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
        cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*
    Create a notification for this product.
    papercut papercut_mf Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
        cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T18:56:22.318Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "papercut_ng",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.7",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "22.1.5",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "21.2.14",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "20.1.10",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "papercut_mf",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.7",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "22.1.5",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "21.2.14",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "20.1.10",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-1884",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-03-14T15:43:10.845115Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-28T15:12:02.085Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "platforms": [
                "MacOS",
                "Linux",
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.7",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.7",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "22.1.5",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "22.1.5",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "21.2.14",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "21.2.14",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "20.1.10",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "20.1.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "This is a Server-Side Request Forgery (SSRF) vulnerability in the PaperCut NG/MF server-side module that  allows an attacker to induce the server-side application to make HTTP requests to an arbitrary domain of the attacker\u0027s choosing."
                }
              ],
              "value": "This is a Server-Side Request Forgery (SSRF) vulnerability in the PaperCut NG/MF server-side module that  allows an attacker to induce the server-side application to make HTTP requests to an arbitrary domain of the attacker\u0027s choosing."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-664",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-664 Server-Side Request Forgery (SSRF)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-918",
                  "description": "CWE-918 Server-Side Request Forgery (SSRF)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-03-14T03:11:48.197Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Server Side Request Forgery in PaperCut NG/MF",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-1884",
        "datePublished": "2024-03-14T03:11:48.197Z",
        "dateReserved": "2024-02-26T05:36:24.198Z",
        "dateUpdated": "2024-08-28T15:12:02.085Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-1883 (GCVE-0-2024-1883)

    Vulnerability from nvd – Published: 2024-03-14 03:09 – Updated: 2024-09-26 03:43
    VLAI
    Title
    Reflected XSS in PaperCut NG/MF
    Summary
    This is a reflected cross site scripting vulnerability in the PaperCut NG/MF application server. An attacker can exploit this weakness by crafting a malicious URL that contains a script. When an unsuspecting user clicks on this malicious link, it could potentially lead to limited loss of confidentiality, integrity or availability.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-76 - Improper Neutralization of Equivalent Special Elements
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-1883",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-03-15T15:24:48.682883Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-04T18:00:09.584Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T18:56:22.271Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "platforms": [
                "MacOS",
                "Linux",
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.7",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.7",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "22.1.5",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "22.1.5",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "21.2.14",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "21.2.14",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "20.1.10",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "20.1.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "This is a reflected cross site scripting vulnerability in the PaperCut NG/MF application server. An attacker can exploit this weakness by crafting a malicious URL that contains a script. When an unsuspecting user clicks on this malicious link, it could potentially lead to limited loss of confidentiality, integrity or availability."
                }
              ],
              "value": "This is a reflected cross site scripting vulnerability in the PaperCut NG/MF application server. An attacker can exploit this weakness by crafting a malicious URL that contains a script. When an unsuspecting user clicks on this malicious link, it could potentially lead to limited loss of confidentiality, integrity or availability."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-63",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-63 Cross-Site Scripting (XSS)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-76",
                  "description": "CWE-76 Improper Neutralization of Equivalent Special Elements",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-26T03:43:04.535Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Reflected XSS in PaperCut NG/MF",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-1883",
        "datePublished": "2024-03-14T03:09:43.195Z",
        "dateReserved": "2024-02-26T05:36:23.133Z",
        "dateUpdated": "2024-09-26T03:43:04.535Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-1882 (GCVE-0-2024-1882)

    Vulnerability from nvd – Published: 2024-03-14 03:08 – Updated: 2024-09-26 03:52
    VLAI
    Title
    Server-side resource injection in PaperCut NG/MF
    Summary
    This vulnerability allows an already authenticated admin user to create a malicious payload that could be leveraged for remote code execution on the server hosting the PaperCut NG/MF application server.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-76 - Improper Neutralization of Equivalent Special Elements
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
    Create a notification for this product.
    papercut papercut_ng Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
        cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*
    Create a notification for this product.
    papercut papercut_mf Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
        cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "papercut_ng",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.7",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "22.1.5",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "21.2.14",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "20.1.10",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "papercut_mf",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.7",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "22.1.5",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "21.2.14",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "20.1.10",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-1882",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-03-16T04:00:55.398174Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-07-25T16:02:52.603Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T18:56:22.441Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "platforms": [
                "MacOS",
                "Linux",
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.7",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.7",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "22.1.5",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "22.1.5",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "21.2.14",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "21.2.14",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "20.1.10",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "20.1.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "This vulnerability allows an already authenticated admin user to create a malicious payload that could be leveraged for remote code execution on the server hosting the PaperCut NG/MF application server.\u003cbr\u003e"
                }
              ],
              "value": "This vulnerability allows an already authenticated admin user to create a malicious payload that could be leveraged for remote code execution on the server hosting the PaperCut NG/MF application server."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-253",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-253 Remote Code Inclusion"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-76",
                  "description": "CWE-76 Improper Neutralization of Equivalent Special Elements",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-26T03:52:57.154Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Server-side resource injection in PaperCut NG/MF",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-1882",
        "datePublished": "2024-03-14T03:08:17.914Z",
        "dateReserved": "2024-02-26T05:36:21.950Z",
        "dateUpdated": "2024-09-26T03:52:57.154Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-1654 (GCVE-0-2024-1654)

    Vulnerability from nvd – Published: 2024-03-14 03:06 – Updated: 2024-08-01 18:48
    VLAI
    Title
    Unauthorized write operations in PaperCut NG/MF
    Summary
    This vulnerability potentially allows unauthorized write operations which may lead to remote code execution. An attacker must already have authenticated admin access and knowledge of both an internal system identifier and details of another valid user to exploit this.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-183 - Permissive List of Allowed Inputs
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
    Create a notification for this product.
    papercut papercut_mf Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
        cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*
    Create a notification for this product.
    papercut papercut_ng Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
        cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "papercut_mf",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.7",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "22.1.5",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "21.2.14",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "20.1.10",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "papercut_ng",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.7",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "22.1.5",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "21.2.14",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "20.1.10",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-1654",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-03-16T04:00:54.272578Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-07-25T16:04:21.347Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T18:48:21.853Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "platforms": [
                "MacOS",
                "Linux",
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.7",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.7",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "22.1.5",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "22.1.5",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "21.2.14",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "21.2.14",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "20.1.10",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "20.1.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "This vulnerability potentially allows unauthorized write operations which may lead to remote code execution. An attacker must already have authenticated admin access and knowledge of both an internal system identifier and details of another valid user to exploit this. "
                }
              ],
              "value": "This vulnerability potentially allows unauthorized write operations which may lead to remote code execution. An attacker must already have authenticated admin access and knowledge of both an internal system identifier and details of another valid user to exploit this. "
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-253",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-253 Remote Code Inclusion"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-183",
                  "description": "CWE-183 Permissive List of Allowed Inputs",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-03-14T03:06:54.867Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Unauthorized write operations in PaperCut NG/MF",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-1654",
        "datePublished": "2024-03-14T03:06:54.867Z",
        "dateReserved": "2024-02-20T02:23:09.252Z",
        "dateUpdated": "2024-08-01T18:48:21.853Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-1223 (GCVE-0-2024-1223)

    Vulnerability from nvd – Published: 2024-03-14 03:04 – Updated: 2024-09-26 03:50
    VLAI
    Title
    Improper authorization controls in PaperCut NG/MF
    Summary
    This vulnerability potentially allows unauthorized enumeration of information from the embedded device APIs. An attacker must already have existing knowledge of some combination of valid usernames, device names and an internal system key. For such an attack to be successful the system must be in a specific runtime state.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-488 - Exposure of Data Element to Wrong Session
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-1223",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-03-14T15:32:53.951317Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-04T18:01:22.597Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T18:33:25.230Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "platforms": [
                "MacOS",
                "Linux",
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.7",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.7",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "22.1.5",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "22.1.5",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "21.2.14",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "21.2.14",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "20.1.10",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "20.1.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "This vulnerability potentially allows unauthorized enumeration of information from the embedded device APIs. An attacker must already have existing knowledge of some combination of valid usernames, device names and an internal system key. For such an attack to be successful the system must be in a specific runtime state."
                }
              ],
              "value": "This vulnerability potentially allows unauthorized enumeration of information from the embedded device APIs. An attacker must already have existing knowledge of some combination of valid usernames, device names and an internal system key. For such an attack to be successful the system must be in a specific runtime state."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-131",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-131 Resource Leak Exposure"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 4.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-488",
                  "description": "CWE-488: Exposure of Data Element to Wrong Session",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-26T03:50:15.610Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Improper authorization controls in PaperCut NG/MF",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-1223",
        "datePublished": "2024-03-14T03:04:43.588Z",
        "dateReserved": "2024-02-05T04:34:01.599Z",
        "dateUpdated": "2024-09-26T03:50:15.610Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-1222 (GCVE-0-2024-1222)

    Vulnerability from nvd – Published: 2024-03-14 03:03 – Updated: 2024-09-26 03:50
    VLAI
    Title
    Incorrect authorization controls in PaperCut NG/MF APIs
    Summary
    This allows attackers to use a maliciously formed API request to gain access to an API authorization level with elevated privileges. This applies to a small subset of PaperCut NG/MF API calls.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-250 - Execution with Unnecessary Privileges
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
    Create a notification for this product.
    papercut papercut_mf Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
        cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*
    Create a notification for this product.
    papercut papercut_ng Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
        cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T18:33:25.592Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "papercut_mf",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.7",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "22.1.5",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "21.2.14",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "20.1.10",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "papercut_ng",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.7",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "22.1.5",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "21.2.14",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "20.1.10",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-1222",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-03-26T04:00:45.176980Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-28T15:10:56.143Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "platforms": [
                "MacOS",
                "Linux",
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.7",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.7",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "22.1.5",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "22.1.5",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "21.2.14",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "21.2.14",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "20.1.10",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "20.1.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "This allows attackers to use a maliciously formed API request to gain access to an API authorization level with elevated privileges. This applies to a small subset of PaperCut NG/MF API calls.\u003cbr\u003e\u003cbr\u003e"
                }
              ],
              "value": "This allows attackers to use a maliciously formed API request to gain access to an API authorization level with elevated privileges. This applies to a small subset of PaperCut NG/MF API calls."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-233",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-233 Privilege Escalation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 8.6,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-250",
                  "description": "CWE-250: Execution with Unnecessary Privileges",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-26T03:50:54.624Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Incorrect authorization controls in PaperCut NG/MF APIs",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-1222",
        "datePublished": "2024-03-14T03:03:18.638Z",
        "dateReserved": "2024-02-05T04:34:00.207Z",
        "dateUpdated": "2024-09-26T03:50:54.624Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-1221 (GCVE-0-2024-1221)

    Vulnerability from nvd – Published: 2024-03-14 03:01 – Updated: 2024-09-26 03:46
    VLAI
    Title
    Improper access controls on APIs on Linux and macOS in PaperCut NG/MF
    Summary
    This vulnerability potentially allows files on a PaperCut NG/MF server to be exposed using a specifically formed payload against the impacted API endpoint. The attacker must carry out some reconnaissance to gain knowledge of a system token. This CVE only affects Linux and macOS PaperCut NG/MF servers.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-76 - Improper Neutralization of Equivalent Special Elements
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-1221",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-03-15T15:25:34.441612Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-04T17:59:42.267Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T18:33:25.291Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "platforms": [
                "MacOS",
                "Linux"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.7",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.7",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "22.1.5",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "22.1.5",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "21.2.14",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "21.2.14",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "20.1.10",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "20.1.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: transparent;\"\u003eThis vulnerability potentially allows files on a PaperCut NG/MF server to be exposed using a specifically formed payload against the impacted API endpoint. The attacker must carry out some reconnaissance to gain knowledge of a system token. This CVE only affects Linux and macOS PaperCut NG/MF servers.\u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "This vulnerability potentially allows files on a PaperCut NG/MF server to be exposed using a specifically formed payload against the impacted API endpoint. The attacker must carry out some reconnaissance to gain knowledge of a system token. This CVE only affects Linux and macOS PaperCut NG/MF servers."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-131",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-131 Resource Leak Exposure"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 3.1,
                "baseSeverity": "LOW",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-76",
                  "description": "CWE-76 Improper Neutralization of Equivalent Special Elements",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-26T03:46:19.820Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Improper access controls on APIs on Linux and macOS in PaperCut NG/MF",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-1221",
        "datePublished": "2024-03-14T03:01:05.179Z",
        "dateReserved": "2024-02-05T04:33:58.615Z",
        "dateUpdated": "2024-09-26T03:46:19.820Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2026-6418 (GCVE-0-2026-6418)

    Vulnerability from cvelistv5 – Published: 2026-05-05 06:21 – Updated: 2026-06-16 05:03
    VLAI
    Title
    PaperCut NG/MF: Path Traversal in Shared Account Synchronization
    Summary
    An issue was discovered in the Shared Account Synchronization component of PaperCut MF (version 25.0.4). The application allows administrative users to configure a source path for account data synchronization. Due to a lack of proper path validation and sanitization, an authenticated user with administrative privileges can specify arbitrary file paths on the local file system. This allows for the enumeration of directory structures and the unauthorized reading of sensitive text-based configuration or system files. When the synchronization process is triggered, the application attempts to parse the contents of the specified file, subsequently exposing the data within the application's account management interface. This vulnerability could lead to the disclosure of sensitive system information or configuration details, depending on the permissions of the service account under which the application is running.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-36 - Absolute path traversal
    • CWE-552 - Files or directories accessible to external parties
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG/MF Affected: 0 , < 25.0.11 (semver)
    Create a notification for this product.
    Credits
    Alexander Shepard
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-6418",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-05T12:41:28.377029Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-05T12:41:36.541Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "PaperCut NG/MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "lessThan": "25.0.11",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "reporter",
              "value": "Alexander Shepard"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eAn issue was discovered in the Shared Account Synchronization component of PaperCut MF (version 25.0.4). The application allows administrative users to configure a source path for account data synchronization.\u003c/p\u003e\u003cp\u003eDue to a lack of proper path validation and sanitization, an authenticated user with administrative privileges can specify arbitrary file paths on the local file system. This allows for the enumeration of directory structures and the unauthorized reading of sensitive text-based configuration or system files.\u003c/p\u003e\u003cp\u003eWhen the synchronization process is triggered, the application attempts to parse the contents of the specified file, subsequently exposing the data within the application\u0027s account management interface. This vulnerability could lead to the disclosure of sensitive system information or configuration details, depending on the permissions of the service account under which the application is running.\u003c/p\u003e"
                }
              ],
              "value": "An issue was discovered in the Shared Account Synchronization component of PaperCut MF (version 25.0.4). The application allows administrative users to configure a source path for account data synchronization.\n\n\n\nDue to a lack of proper path validation and sanitization, an authenticated user with administrative privileges can specify arbitrary file paths on the local file system. This allows for the enumeration of directory structures and the unauthorized reading of sensitive text-based configuration or system files.\n\n\n\nWhen the synchronization process is triggered, the application attempts to parse the contents of the specified file, subsequently exposing the data within the application\u0027s account management interface. This vulnerability could lead to the disclosure of sensitive system information or configuration details, depending on the permissions of the service account under which the application is running."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "PRESENT",
                "attackVector": "NETWORK",
                "baseScore": 4.6,
                "baseSeverity": "MEDIUM",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "HIGH",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "HIGH",
                "subIntegrityImpact": "NONE",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:L/VI:N/VA:N/SC:H/SI:N/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "LOW",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-36",
                  "description": "CWE-36 Absolute path traversal",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-552",
                  "description": "CWE-552 Files or directories accessible to external parties",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-06-16T05:03:05.377Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/papercut-ng-mf-and-papercut-hive-security-bulletin-may-2026/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "PaperCut NG/MF: Path Traversal in Shared Account Synchronization",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2026-6418",
        "datePublished": "2026-05-05T06:21:37.345Z",
        "dateReserved": "2026-04-16T03:15:03.794Z",
        "dateUpdated": "2026-06-16T05:03:05.377Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-6180 (GCVE-0-2026-6180)

    Vulnerability from cvelistv5 – Published: 2026-05-05 06:19 – Updated: 2026-05-05 14:13
    VLAI
    Title
    PaperCut MF: Card truncation on HP readers
    Summary
    A race condition exists in PaperCut MF when processing badge-swipe data from certain HP multifunction devices. Under specific network conditions involving dropped packets and out-of-order sequence counters, the server may incorrectly process fragmented data chunks. If a sequence reset notification fails to reach the server, the server may reject the initial data chunk while erroneously accepting subsequent chunks before a connection reset completes. This leads to the registration of a truncated badge ID string. While this typically results in an authentication failure, the vulnerability is compounded in environments utilizing custom badge-ID post-processing scripts. In such configurations, the truncated string may be transformed into a valid ID belonging to a different user, leading to unauthorized session establishment (Incorrect User Login) on the device.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-367 - Time-of-check time-of-use (TOCTOU) race condition
    • CWE-20 - Improper input validation
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG/MF Affected: 0 , < 24.1.9 (semver)
    Affected: 0 , < 25.0.10 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-6180",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-05-05T13:47:26.998229Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-05-05T14:13:10.635Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "PaperCut NG/MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "lessThan": "24.1.9",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "25.0.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eA race condition exists in PaperCut MF when processing badge-swipe data from certain HP multifunction devices. Under specific network conditions involving dropped packets and out-of-order sequence counters, the server may incorrectly process fragmented data chunks. If a sequence reset notification fails to reach the server, the server may reject the initial data chunk while erroneously accepting subsequent chunks before a connection reset completes.\u003c/p\u003e\u003cp\u003eThis leads to the registration of a truncated badge ID string. While this typically results in an authentication failure, the vulnerability is compounded in environments utilizing custom badge-ID post-processing scripts. In such configurations, the truncated string may be transformed into a valid ID belonging to a different user, leading to unauthorized session establishment (Incorrect User Login) on the device.\u003c/p\u003e"
                }
              ],
              "value": "A race condition exists in PaperCut MF when processing badge-swipe data from certain HP multifunction devices. Under specific network conditions involving dropped packets and out-of-order sequence counters, the server may incorrectly process fragmented data chunks. If a sequence reset notification fails to reach the server, the server may reject the initial data chunk while erroneously accepting subsequent chunks before a connection reset completes.\n\n\n\nThis leads to the registration of a truncated badge ID string. While this typically results in an authentication failure, the vulnerability is compounded in environments utilizing custom badge-ID post-processing scripts. In such configurations, the truncated string may be transformed into a valid ID belonging to a different user, leading to unauthorized session establishment (Incorrect User Login) on the device."
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "PRESENT",
                "attackVector": "PHYSICAL",
                "baseScore": 4.1,
                "baseSeverity": "MEDIUM",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "LOW",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "LOW",
                "subIntegrityImpact": "LOW",
                "userInteraction": "NONE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:P/AC:L/AT:P/PR:L/UI:N/VC:H/VI:N/VA:N/SC:L/SI:L/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-367",
                  "description": "CWE-367 Time-of-check time-of-use (TOCTOU) race condition",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            },
            {
              "descriptions": [
                {
                  "cweId": "CWE-20",
                  "description": "CWE-20 Improper input validation",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-05-05T06:19:44.725Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/papercut-ng-mf-and-papercut-hive-security-bulletin-may-2026/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "PaperCut MF: Card truncation on HP readers",
          "x_generator": {
            "engine": "Vulnogram 1.0.2"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2026-6180",
        "datePublished": "2026-05-05T06:19:44.725Z",
        "dateReserved": "2026-04-13T05:21:02.099Z",
        "dateUpdated": "2026-05-05T14:13:10.635Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-5115 (GCVE-0-2026-5115)

    Vulnerability from cvelistv5 – Published: 2026-03-31 00:54 – Updated: 2026-03-31 13:59
    VLAI
    Title
    Session hijacking in PaperCut NG/MF embedded application for Konica Minolta devices
    Summary
    The PaperCut NG/MF (specifically, the embedded application for Konica Minolta devices) is vulnerable to session hijacking. The PaperCut NG/MF Embedded application is a software interface that runs directly on the touch screen of a multi-function device. It was internally discovered that the communication channel between the embedded application and the server was insecure, which could leak data including sensitive information that may be used to mount an  attack on the device. Such an attack could potentially be used to steal data or to perform a phishing attack on the end user.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-319 - Cleartext transmission of sensitive information
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut Papercut NG/MF Affected: 0 , < 25.0.5 (semver)
    Affected: 0 , < 25.0.9 (KM certified) (custom)
    Create a notification for this product.
    Credits
    Xavier Gibbon
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-5115",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-31T13:59:29.117987Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-31T13:59:35.485Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "Papercut NG/MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "lessThan": "25.0.5",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                },
                {
                  "lessThan": "25.0.9 (KM certified)",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Xavier Gibbon"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003eThe PaperCut NG/MF (specifically, the embedded application for Konica Minolta devices) is vulnerable to session hijacking. The PaperCut NG/MF Embedded application is a software interface that runs directly on the touch screen of a multi-function device.\u003c/p\u003e\u003cp\u003e\u003cspan\u003eIt was internally discovered that the communication channel between the embedded application and the server was insecure, which could leak data including sensitive information that may be used to mount an \u0026nbsp;attack on the device.\u003c/span\u003e\u003cspan\u003e\u0026nbsp;Such an attack could potentially be used to steal data or to perform a phishing attack on the end user.\u003c/span\u003e\u003c/p\u003e"
                }
              ],
              "value": "The PaperCut NG/MF (specifically, the embedded application for Konica Minolta devices) is vulnerable to session hijacking. The PaperCut NG/MF Embedded application is a software interface that runs directly on the touch screen of a multi-function device.\n\nIt was internally discovered that the communication channel between the embedded application and the server was insecure, which could leak data including sensitive information that may be used to mount an \u00a0attack on the device.\u00a0Such an attack could potentially be used to steal data or to perform a phishing attack on the end user."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-593",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-593 Session Hijacking"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "HIGH",
                "attackRequirements": "NONE",
                "attackVector": "ADJACENT",
                "baseScore": 3.6,
                "baseSeverity": "LOW",
                "exploitMaturity": "UNREPORTED",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "HIGH",
                "subIntegrityImpact": "NONE",
                "userInteraction": "PASSIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:A/AC:H/AT:N/PR:N/UI:P/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:U",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "HIGH",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-319",
                  "description": "CWE-319 Cleartext transmission of sensitive information",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-31T01:08:05.715Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/papercut-ng-mf-security-bulletin-march-2026/"
            }
          ],
          "source": {
            "discovery": "INTERNAL"
          },
          "title": "Session hijacking in PaperCut NG/MF embedded application for Konica Minolta devices",
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2026-5115",
        "datePublished": "2026-03-31T00:54:48.889Z",
        "dateReserved": "2026-03-29T22:32:07.583Z",
        "dateUpdated": "2026-03-31T13:59:35.485Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2026-4794 (GCVE-0-2026-4794)

    Vulnerability from cvelistv5 – Published: 2026-03-31 00:39 – Updated: 2026-03-31 14:03
    VLAI
    Title
    Multiple cross-site scripting (XSS) vulnerabilities in PaperCut NG/MF
    Summary
    Multiple cross-site scripting (XSS) vulnerabilities in PaperCut NG/MF before 25.0.10 allow authenticated administrator users to inject arbitrary web script or HTML code via different UI fields. This could be used to compromise other admininistrator's sessions or perform unauthorized actions via the administrator's authenticated context (e.g. requires an active login session).
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper neutralization of input during web page generation ('cross-site scripting')
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG/MF Affected: 0 , < 25.0.10 (semver)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2026-4794",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2026-03-31T14:03:53.639112Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2026-03-31T14:03:59.735Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows",
                "MacOS",
                "Linux"
              ],
              "product": "PaperCut NG/MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "lessThan": "25.0.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Multiple cross-site scripting (XSS) vulnerabilities in PaperCut NG/MF before 25.0.10\u0026nbsp;allow authenticated administrator users to inject arbitrary web script or HTML code via different UI fields. This could be used to compromise other admininistrator\u0027s sessions or perform unauthorized actions via the administrator\u0027s authenticated context (e.g. requires an active login session)."
                }
              ],
              "value": "Multiple cross-site scripting (XSS) vulnerabilities in PaperCut NG/MF before 25.0.10\u00a0allow authenticated administrator users to inject arbitrary web script or HTML code via different UI fields. This could be used to compromise other admininistrator\u0027s sessions or perform unauthorized actions via the administrator\u0027s authenticated context (e.g. requires an active login session)."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-591",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-591 Reflected XSS"
                }
              ]
            },
            {
              "capecId": "CAPEC-592",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-592 Stored XSS"
                }
              ]
            },
            {
              "capecId": "CAPEC-63",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-63 Cross-Site Scripting (XSS)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "PRESENT",
                "attackVector": "NETWORK",
                "baseScore": 2.1,
                "baseSeverity": "LOW",
                "exploitMaturity": "NOT_DEFINED",
                "privilegesRequired": "LOW",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "LOW",
                "subIntegrityImpact": "LOW",
                "userInteraction": "PASSIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "NONE",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper neutralization of input during web page generation (\u0027cross-site scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-03-31T00:39:56.135Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/papercut-ng-mf-security-bulletin-march-2026/"
            }
          ],
          "source": {
            "discovery": "EXTERNAL"
          },
          "title": "Multiple cross-site scripting (XSS) vulnerabilities in PaperCut NG/MF",
          "x_generator": {
            "engine": "Vulnogram 1.0.1"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2026-4794",
        "datePublished": "2026-03-31T00:39:56.135Z",
        "dateReserved": "2026-03-25T00:52:13.130Z",
        "dateUpdated": "2026-03-31T14:03:59.735Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2024-9672 (GCVE-0-2024-9672)

    Vulnerability from cvelistv5 – Published: 2024-12-09 23:49 – Updated: 2024-12-10 16:08
    VLAI
    Title
    Reflected XSS in PaperCut MF
    Summary
    A reflected cross-site scripting (XSS) vulnerability exists in PaperCut NG/MF. This issue can be used to execute specially created JavaScript payloads in the browser. A user must click on a malicious link for this issue to occur.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-917 - Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut MF Affected: 0 , < 24.1 (custom)
    Create a notification for this product.
    Date Public
    2024-12-09 23:49
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-9672",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-12-10T16:08:26.031308Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-12-10T16:08:48.582Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows",
                "MacOS",
                "Linux"
              ],
              "product": "PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "24.1",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "24.1",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "datePublic": "2024-12-09T23:49:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: transparent;\"\u003eA reflected cross-site scripting (XSS) vulnerability exists in PaperCut NG/MF. This issue can be used to execute specially created JavaScript payloads in the browser. A user must click on a malicious link for this issue to occur. \u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "A reflected cross-site scripting (XSS) vulnerability exists in PaperCut NG/MF. This issue can be used to execute specially created JavaScript payloads in the browser. A user must click on a malicious link for this issue to occur."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-591",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-591 Reflected XSS"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV4_0": {
                "Automatable": "NOT_DEFINED",
                "Recovery": "NOT_DEFINED",
                "Safety": "NOT_DEFINED",
                "attackComplexity": "LOW",
                "attackRequirements": "NONE",
                "attackVector": "NETWORK",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "privilegesRequired": "NONE",
                "providerUrgency": "NOT_DEFINED",
                "subAvailabilityImpact": "NONE",
                "subConfidentialityImpact": "HIGH",
                "subIntegrityImpact": "HIGH",
                "userInteraction": "ACTIVE",
                "valueDensity": "NOT_DEFINED",
                "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:L/VA:N/SC:H/SI:H/SA:N",
                "version": "4.0",
                "vulnAvailabilityImpact": "NONE",
                "vulnConfidentialityImpact": "NONE",
                "vulnIntegrityImpact": "LOW",
                "vulnerabilityResponseEffort": "NOT_DEFINED"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-917",
                  "description": "CWE-917 Improper Neutralization of Special Elements used in an Expression Language Statement (\u0027Expression Language Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-12-09T23:49:55.535Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/security-bulletin-december-2024/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Reflected XSS in PaperCut MF",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-9672",
        "datePublished": "2024-12-09T23:49:55.535Z",
        "dateReserved": "2024-10-09T00:06:26.925Z",
        "dateUpdated": "2024-12-10T16:08:48.582Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-8404 (GCVE-0-2024-8404)

    Vulnerability from cvelistv5 – Published: 2024-09-26 01:42 – Updated: 2025-05-13 01:39
    VLAI
    Title
    Arbitrary File Deletion in PaperCut NG/MF Web Print Hot folder
    Summary
    An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege code directly on the server via the web-print-hot-folder. Important: In most installations, this risk is mitigated by the default Windows Server configuration, which restricts local login access to Administrators only. However, this vulnerability could pose a risk to customers who allow non-administrative users to log into the local console of the Windows environment hosting the PaperCut NG/MF application server. Update: This CVE has been updated in May 2025 to update the fixed version and fix process. Please refer to the May 2025 Security Bulletin. Note: This CVE has been split from CVE-2024-3037.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 24.1.7 (custom)
    Create a notification for this product.
    papercut papercut_mf Affected: 0 , < 23.0.9 (custom)
        cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*
    Create a notification for this product.
    papercut papercut_ng Affected: 0 , < 23.0.9 (custom)
        cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-09-26 01:35
    Credits
    Amol Dosanjh of Trend Micro Nicholas Zubrisky (@NZubrisky) of Trend Micro Michael DePlante (@izobashi) of Trend Micro's ZDI
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "papercut_mf",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.9",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "papercut_ng",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.9",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-8404",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-26T14:59:11.788417Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-26T15:01:21.951Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "Web Print"
              ],
              "platforms": [
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "24.1.7",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "24.1.7",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Amol Dosanjh of Trend Micro"
            },
            {
              "lang": "en",
              "type": "finder",
              "value": "Nicholas Zubrisky (@NZubrisky) of Trend Micro"
            },
            {
              "lang": "en",
              "type": "finder",
              "value": "Michael DePlante (@izobashi) of Trend Micro\u0027s ZDI"
            }
          ],
          "datePublic": "2024-09-26T01:35:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eAn arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege code directly on the server via the web-print-hot-folder. \u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eImportant: In most installations, this risk is mitigated by the default Windows Server configuration, which restricts local login access to Administrators only. However, this vulnerability could pose a risk to customers who allow non-administrative users to log into the local console of the Windows environment hosting the PaperCut NG/MF application server.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eUpdate:\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eThis CVE has been updated in May 2025 to update the fixed version and fix process. Please refer to the May 2025 Security Bulletin.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eNote: \u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eThis CVE has been split from CVE-2024-3037.\u003c/span\u003e\u003cbr\u003e\u003c/p\u003e"
                }
              ],
              "value": "An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege code directly on the server via the web-print-hot-folder. \n\nImportant: In most installations, this risk is mitigated by the default Windows Server configuration, which restricts local login access to Administrators only. However, this vulnerability could pose a risk to customers who allow non-administrative users to log into the local console of the Windows environment hosting the PaperCut NG/MF application server.\n\nUpdate:\n\nThis CVE has been updated in May 2025 to update the fixed version and fix process. Please refer to the May 2025 Security Bulletin.\n\nNote: \n\nThis CVE has been split from CVE-2024-3037."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-165",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-165 File Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-59",
                  "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-05-13T01:39:33.742Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-May-2025/"
            },
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-May-2024/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Arbitrary File Deletion in PaperCut NG/MF Web Print Hot folder",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-8404",
        "datePublished": "2024-09-26T01:42:49.400Z",
        "dateReserved": "2024-09-04T05:55:44.460Z",
        "dateUpdated": "2025-05-13T01:39:33.742Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-8405 (GCVE-0-2024-8405)

    Vulnerability from cvelistv5 – Published: 2024-09-26 01:36 – Updated: 2024-09-26 15:02
    VLAI
    Title
    Arbitrary File Creation in PaperCut NG/MF Web Print leading to a Denial of Service attack
    Summary
    An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled. This specific flaw exists within the web-print.exe process, which can incorrectly create files that don’t exist when a maliciously formed payload is provided. This can be used to flood disk space and result in a Denial of Service (DoS) attack. Note: This CVE has been split from CVE-2024-4712.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.9 (custom)
    Create a notification for this product.
    Date Public
    2024-09-26 01:35
    Credits
    Amol Dosanjh of Trend Micro
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-8405",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-26T15:01:57.724249Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-26T15:02:10.145Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "Web Print"
              ],
              "platforms": [
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.9",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.9",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Amol Dosanjh of Trend Micro"
            }
          ],
          "datePublic": "2024-09-26T01:35:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eAn arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled. \u003c/span\u003e\u003cspan style=\"background-color: transparent;\"\u003eThis specific flaw exists within the web-print.exe process, which can incorrectly create files that don\u2019t exist when a maliciously formed payload is provided. This can be used to flood disk space and result in a Denial of Service (DoS) attack.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eNote: \u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eThis CVE has been split from CVE-2024-4712.\u003c/span\u003e\u003c/p\u003e"
                }
              ],
              "value": "An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled. This specific flaw exists within the web-print.exe process, which can incorrectly create files that don\u2019t exist when a maliciously formed payload is provided. This can be used to flood disk space and result in a Denial of Service (DoS) attack.\n\nNote: \n\nThis CVE has been split from CVE-2024-4712."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-125",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-125 Flooding"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 6.1,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-77",
                  "description": "CWE-77 Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-26T01:36:26.364Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-May-2024/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Arbitrary File Creation in PaperCut NG/MF Web Print leading to a Denial of Service attack",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-8405",
        "datePublished": "2024-09-26T01:36:26.364Z",
        "dateReserved": "2024-09-04T05:55:45.849Z",
        "dateUpdated": "2024-09-26T15:02:10.145Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-4712 (GCVE-0-2024-4712)

    Vulnerability from cvelistv5 – Published: 2024-05-14 00:13 – Updated: 2024-09-26 01:27
    VLAI
    Title
    Arbitrary File Creation in PaperCut NG/MF Web Print Image Handler
    Summary
    An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled. This specific flaw exists within the image-handler process, which can incorrectly create files that don’t exist when a maliciously formed payload is provided. This can lead to local privilege escalation. Note: This CVE has been split into two (CVE-2024-4712 and CVE-2024-8405) and it’s been rescored with a "Privileges Required (PR)" rating of low, and “Attack Complexity (AC)” rating of low, reflecting the worst-case scenario where an Administrator has granted local login access to standard network users on the host server.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.9 (custom)
    Create a notification for this product.
    Credits
    Nicholas Zubrisky (@NZubrisky) of Trend Micro Research
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-4712",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-06-20T19:40:02.500241Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-20T19:40:12.502Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T20:47:41.691Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/security-bulletin-may-2024/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "Web Print"
              ],
              "platforms": [
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.9",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.9",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Nicholas Zubrisky (@NZubrisky) of Trend Micro Research"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eAn arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled.\u0026nbsp;\u003c/span\u003e\u003cspan style=\"background-color: transparent;\"\u003eThis specific flaw exists within the image-handler process, which can incorrectly create files that don\u2019t exist when a maliciously formed payload is provided. This can lead to local privilege escalation.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eNote: \u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eThis CVE has been split into two (CVE-2024-4712 and CVE-2024-8405) and it\u2019s been rescored \u003c/span\u003e\u003cspan style=\"background-color: transparent;\"\u003ewith a \"Privileges Required (PR)\" rating of low, and \u201cAttack Complexity (AC)\u201d rating of low, reflecting the worst-case scenario where an Administrator has granted local login access to standard network users on the host server.\u003c/span\u003e\u003c/p\u003e\u003cbr\u003e\u003cbr\u003e"
                }
              ],
              "value": "An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled.\u00a0This specific flaw exists within the image-handler process, which can incorrectly create files that don\u2019t exist when a maliciously formed payload is provided. This can lead to local privilege escalation.\n\nNote: \n\nThis CVE has been split into two (CVE-2024-4712 and CVE-2024-8405) and it\u2019s been rescored with a \"Privileges Required (PR)\" rating of low, and \u201cAttack Complexity (AC)\u201d rating of low, reflecting the worst-case scenario where an Administrator has granted local login access to standard network users on the host server."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-165",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-165 File Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-77",
                  "description": "CWE-77 Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-26T01:27:50.169Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-May-2024/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Arbitrary File Creation in PaperCut NG/MF Web Print Image Handler",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-4712",
        "datePublished": "2024-05-14T00:13:47.600Z",
        "dateReserved": "2024-05-10T05:15:31.461Z",
        "dateUpdated": "2024-09-26T01:27:50.169Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-3037 (GCVE-0-2024-3037)

    Vulnerability from cvelistv5 – Published: 2024-05-14 00:12 – Updated: 2024-10-07 20:27
    VLAI
    Title
    Arbitrary File Deletion in PaperCut NG/MF Web Print
    Summary
    An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege code directly on the server. Important: In most installations, this risk is mitigated by the default Windows Server configuration, which typically restricts local login access to Administrators only. However, this vulnerability could pose a risk to customers who allow non-administrative users to log in to the local console of the Windows environment hosting the PaperCut NG/MF application server. Note: This CVE has been split into two separate CVEs (CVE-2024-3037 and CVE-2024-8404) and it’s been rescored with a "Privileges Required (PR)" rating of low, and “Attack Complexity (AC)” rating of low, reflecting the worst-case scenario where an Administrator has granted local login access to standard users on the host server.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-59 - Improper Link Resolution Before File Access ('Link Following')
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.9 (custom)
    Create a notification for this product.
    papercut papercut_ng Affected: 0 , < 23.0.9 (custom)
        cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*
    Create a notification for this product.
    papercut papercut_mf Affected: 0 , < 23.0.9 (custom)
        cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Credits
    Nicholas Zubrisky (@NZubrisky) Michael DePlante(@izobashi) of Trend Micro's ZDI
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T19:32:42.646Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/security-bulletin-may-2024/"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "papercut_ng",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.9",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "papercut_mf",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.9",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-3037",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-10-07T20:25:16.955265Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-10-07T20:27:00.841Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "modules": [
                "Web Print"
              ],
              "platforms": [
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.9",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.9",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Nicholas Zubrisky (@NZubrisky)"
            },
            {
              "lang": "en",
              "type": "finder",
              "value": "Michael DePlante(@izobashi) of Trend Micro\u0027s ZDI"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eAn arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege code directly on the server. \u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eImportant: In most installations, this risk is mitigated by the default Windows Server configuration, which typically restricts local login access to Administrators only. However, this vulnerability could pose a risk to customers who allow non-administrative users to log in to the local console of the Windows environment hosting the PaperCut NG/MF application server.\u003c/span\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: transparent;\"\u003eNote: This CVE has been split into two separate CVEs (CVE-2024-3037 and CVE-2024-8404) and it\u2019s been rescored with a \"Privileges Required (PR)\" rating of low, and \u201cAttack Complexity (AC)\u201d rating of low, reflecting the worst-case scenario where an Administrator has granted local login access to standard users on the host server.\u003c/span\u003e\u003c/p\u003e"
                }
              ],
              "value": "An arbitrary file deletion vulnerability exists in PaperCut NG/MF, specifically affecting Windows servers with Web Print enabled. To exploit this vulnerability, an attacker must first obtain local login access to the Windows Server hosting PaperCut NG/MF and be capable of executing low-privilege code directly on the server. \n\nImportant: In most installations, this risk is mitigated by the default Windows Server configuration, which typically restricts local login access to Administrators only. However, this vulnerability could pose a risk to customers who allow non-administrative users to log in to the local console of the Windows environment hosting the PaperCut NG/MF application server.\n\nNote: This CVE has been split into two separate CVEs (CVE-2024-3037 and CVE-2024-8404) and it\u2019s been rescored with a \"Privileges Required (PR)\" rating of low, and \u201cAttack Complexity (AC)\u201d rating of low, reflecting the worst-case scenario where an Administrator has granted local login access to standard users on the host server."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-165",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-165 File Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-59",
                  "description": "CWE-59 Improper Link Resolution Before File Access (\u0027Link Following\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-26T01:15:01.885Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-May-2024/"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Arbitrary File Deletion in PaperCut NG/MF Web Print",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-3037",
        "datePublished": "2024-05-14T00:12:37.696Z",
        "dateReserved": "2024-03-28T04:33:02.602Z",
        "dateUpdated": "2024-10-07T20:27:00.841Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-39469 (GCVE-0-2023-39469)

    Vulnerability from cvelistv5 – Published: 2024-05-03 01:59 – Updated: 2024-08-02 18:10
    VLAI
    Title
    PaperCut NG External User Lookup Code Injection Remote Code Execution Vulnerability
    Summary
    PaperCut NG External User Lookup Code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PaperCut NG. Authentication is required to exploit this vulnerability. The specific flaw exists within the External User Lookup functionality. The issue results from the lack of proper validation of a user-supplied string before using it to execute Java code. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-21013.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-94 - Improper Control of Generation of Code ('Code Injection')
    Assigner
    zdi
    References
    Impacted products
    Vendor Product Version
    PaperCut NG Affected: 22.0.12
    Create a notification for this product.
    papercut papercut_ng Affected: 22.0.12
        cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2023-08-30 20:13
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unknown",
                "product": "papercut_ng",
                "vendor": "papercut",
                "versions": [
                  {
                    "status": "affected",
                    "version": "22.0.12"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-39469",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-05-06T15:38:33.991469Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-04T17:27:06.117Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T18:10:20.806Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "ZDI-23-1285",
                "tags": [
                  "x_research-advisory",
                  "x_transferred"
                ],
                "url": "https://www.zerodayinitiative.com/advisories/ZDI-23-1285/"
              },
              {
                "name": "vendor-provided URL",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/SecurityBulletinJuly2023/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unknown",
              "product": "NG",
              "vendor": "PaperCut",
              "versions": [
                {
                  "status": "affected",
                  "version": "22.0.12"
                }
              ]
            }
          ],
          "dateAssigned": "2023-08-02T21:44:31.439Z",
          "datePublic": "2023-08-30T20:13:29.538Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "PaperCut NG External User Lookup Code Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PaperCut NG. Authentication is required to exploit this vulnerability.\n\nThe specific flaw exists within the External User Lookup functionality. The issue results from the lack of proper validation of a user-supplied string before using it to execute Java code. An attacker can leverage this vulnerability to execute code in the context of SYSTEM. Was ZDI-CAN-21013."
            }
          ],
          "metrics": [
            {
              "cvssV3_0": {
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.0"
              },
              "format": "CVSS"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-94",
                  "description": "CWE-94: Improper Control of Generation of Code (\u0027Code Injection\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-05-03T01:59:31.060Z",
            "orgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
            "shortName": "zdi"
          },
          "references": [
            {
              "name": "ZDI-23-1285",
              "tags": [
                "x_research-advisory"
              ],
              "url": "https://www.zerodayinitiative.com/advisories/ZDI-23-1285/"
            },
            {
              "name": "vendor-provided URL",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://www.papercut.com/kb/Main/SecurityBulletinJuly2023/"
            }
          ],
          "source": {
            "lang": "en",
            "value": "Anonymous"
          },
          "title": "PaperCut NG External User Lookup Code Injection Remote Code Execution Vulnerability"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "99f1926a-a320-47d8-bbb5-42feb611262e",
        "assignerShortName": "zdi",
        "cveId": "CVE-2023-39469",
        "datePublished": "2024-05-03T01:59:31.060Z",
        "dateReserved": "2023-08-02T21:37:23.123Z",
        "dateUpdated": "2024-08-02T18:10:20.806Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-1884 (GCVE-0-2024-1884)

    Vulnerability from cvelistv5 – Published: 2024-03-14 03:11 – Updated: 2024-08-28 15:12
    VLAI
    Title
    Server Side Request Forgery in PaperCut NG/MF
    Summary
    This is a Server-Side Request Forgery (SSRF) vulnerability in the PaperCut NG/MF server-side module that allows an attacker to induce the server-side application to make HTTP requests to an arbitrary domain of the attacker's choosing.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-918 - Server-Side Request Forgery (SSRF)
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
    Create a notification for this product.
    papercut papercut_ng Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
        cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*
    Create a notification for this product.
    papercut papercut_mf Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
        cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T18:56:22.318Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "papercut_ng",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.7",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "22.1.5",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "21.2.14",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "20.1.10",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "papercut_mf",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.7",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "22.1.5",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "21.2.14",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "20.1.10",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-1884",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-03-14T15:43:10.845115Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-28T15:12:02.085Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "platforms": [
                "MacOS",
                "Linux",
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.7",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.7",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "22.1.5",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "22.1.5",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "21.2.14",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "21.2.14",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "20.1.10",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "20.1.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "This is a Server-Side Request Forgery (SSRF) vulnerability in the PaperCut NG/MF server-side module that  allows an attacker to induce the server-side application to make HTTP requests to an arbitrary domain of the attacker\u0027s choosing."
                }
              ],
              "value": "This is a Server-Side Request Forgery (SSRF) vulnerability in the PaperCut NG/MF server-side module that  allows an attacker to induce the server-side application to make HTTP requests to an arbitrary domain of the attacker\u0027s choosing."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-664",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-664 Server-Side Request Forgery (SSRF)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-918",
                  "description": "CWE-918 Server-Side Request Forgery (SSRF)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-03-14T03:11:48.197Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Server Side Request Forgery in PaperCut NG/MF",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-1884",
        "datePublished": "2024-03-14T03:11:48.197Z",
        "dateReserved": "2024-02-26T05:36:24.198Z",
        "dateUpdated": "2024-08-28T15:12:02.085Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-1883 (GCVE-0-2024-1883)

    Vulnerability from cvelistv5 – Published: 2024-03-14 03:09 – Updated: 2024-09-26 03:43
    VLAI
    Title
    Reflected XSS in PaperCut NG/MF
    Summary
    This is a reflected cross site scripting vulnerability in the PaperCut NG/MF application server. An attacker can exploit this weakness by crafting a malicious URL that contains a script. When an unsuspecting user clicks on this malicious link, it could potentially lead to limited loss of confidentiality, integrity or availability.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-76 - Improper Neutralization of Equivalent Special Elements
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-1883",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-03-15T15:24:48.682883Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-06-04T18:00:09.584Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T18:56:22.271Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "platforms": [
                "MacOS",
                "Linux",
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.7",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.7",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "22.1.5",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "22.1.5",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "21.2.14",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "21.2.14",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "20.1.10",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "20.1.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "This is a reflected cross site scripting vulnerability in the PaperCut NG/MF application server. An attacker can exploit this weakness by crafting a malicious URL that contains a script. When an unsuspecting user clicks on this malicious link, it could potentially lead to limited loss of confidentiality, integrity or availability."
                }
              ],
              "value": "This is a reflected cross site scripting vulnerability in the PaperCut NG/MF application server. An attacker can exploit this weakness by crafting a malicious URL that contains a script. When an unsuspecting user clicks on this malicious link, it could potentially lead to limited loss of confidentiality, integrity or availability."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-63",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-63 Cross-Site Scripting (XSS)"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 6.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-76",
                  "description": "CWE-76 Improper Neutralization of Equivalent Special Elements",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-26T03:43:04.535Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Reflected XSS in PaperCut NG/MF",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-1883",
        "datePublished": "2024-03-14T03:09:43.195Z",
        "dateReserved": "2024-02-26T05:36:23.133Z",
        "dateUpdated": "2024-09-26T03:43:04.535Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-1882 (GCVE-0-2024-1882)

    Vulnerability from cvelistv5 – Published: 2024-03-14 03:08 – Updated: 2024-09-26 03:52
    VLAI
    Title
    Server-side resource injection in PaperCut NG/MF
    Summary
    This vulnerability allows an already authenticated admin user to create a malicious payload that could be leveraged for remote code execution on the server hosting the PaperCut NG/MF application server.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-76 - Improper Neutralization of Equivalent Special Elements
    Assigner
    Impacted products
    Vendor Product Version
    PaperCut PaperCut NG, PaperCut MF Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
    Create a notification for this product.
    papercut papercut_ng Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
        cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*
    Create a notification for this product.
    papercut papercut_mf Affected: 0 , < 23.0.7 (custom)
    Affected: 0 , < 22.1.5 (custom)
    Affected: 0 , < 21.2.14 (custom)
    Affected: 0 , < 20.1.10 (custom)
        cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "papercut_ng",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.7",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "22.1.5",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "21.2.14",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "20.1.10",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "affected",
                "product": "papercut_mf",
                "vendor": "papercut",
                "versions": [
                  {
                    "lessThan": "23.0.7",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "22.1.5",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "21.2.14",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  },
                  {
                    "lessThan": "20.1.10",
                    "status": "affected",
                    "version": "0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-1882",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-03-16T04:00:55.398174Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-07-25T16:02:52.603Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T18:56:22.441Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "affected",
              "platforms": [
                "MacOS",
                "Linux",
                "Windows"
              ],
              "product": "PaperCut NG, PaperCut MF",
              "vendor": "PaperCut",
              "versions": [
                {
                  "changes": [
                    {
                      "at": "23.0.7",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "23.0.7",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "22.1.5",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "22.1.5",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "21.2.14",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "21.2.14",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                },
                {
                  "changes": [
                    {
                      "at": "20.1.10",
                      "status": "unaffected"
                    }
                  ],
                  "lessThan": "20.1.10",
                  "status": "affected",
                  "version": "0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "This vulnerability allows an already authenticated admin user to create a malicious payload that could be leveraged for remote code execution on the server hosting the PaperCut NG/MF application server.\u003cbr\u003e"
                }
              ],
              "value": "This vulnerability allows an already authenticated admin user to create a malicious payload that could be leveraged for remote code execution on the server hosting the PaperCut NG/MF application server."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-253",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-253 Remote Code Inclusion"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.2,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-76",
                  "description": "CWE-76 Improper Neutralization of Equivalent Special Elements",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-09-26T03:52:57.154Z",
            "orgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
            "shortName": "PaperCut"
          },
          "references": [
            {
              "url": "https://www.papercut.com/kb/Main/Security-Bulletin-March-2024"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Server-side resource injection in PaperCut NG/MF",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "eb41dac7-0af8-4f84-9f6d-0272772514f4",
        "assignerShortName": "PaperCut",
        "cveId": "CVE-2024-1882",
        "datePublished": "2024-03-14T03:08:17.914Z",
        "dateReserved": "2024-02-26T05:36:21.950Z",
        "dateUpdated": "2024-09-26T03:52:57.154Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }