CVE-2024-3037

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published May 14, 2024

CWE ID 416

Summary

CVE-2024-3037 is a newly disclosed vulnerability impacting PaperCut NG/MF on Windows servers with Web Print enabled. The issue allows an attacker with local access to the PaperCut server, such as a domain admin, to delete arbitrary files. This can lead to significant data loss and compromise of the affected system. The vulnerability is specific to PaperCut NG/MF on Windows and requires direct access to the server. No remote exploitation is possible. Users are strongly urged to apply the forthcoming patch to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vKAcXA
https://www.cve.org/CVERecord?id=CVE-2024-3037
https://nvd.nist.gov/vuln/detail/CVE-2024-3037

Back to Vulnerability Database

CVE-2024-3037

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations