CVE-2024-1884
CVSS 3.1 Score 6.5 of 10 (medium)
Details
Published Mar 14, 2024
CWE ID 918
Summary
CVE-2024-1884 is a Server-Side Request Forgery (SSRF) vulnerability affecting the PaperCut NG/MF server-side module. An attacker can exploit this issue to induce the server-side application to make HTTP requests to a domain of their choosing, potentially leading to unauthorized access or data exfiltration. This vulnerability poses a significant risk to organizations using PaperCut NG/MF and requires immediate attention and patching to mitigate potential threats.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share