Description

An arbitrary file creation vulnerability exists in PaperCut NG/MF that only affects Windows servers with Web Print enabled. This specific flaw exists within the web-print.exe process, which can incorrectly create files that don’t exist when a maliciously formed payload is provided. This can be used to flood disk space and result in a Denial of Service (DoS) attack. Note: This CVE has been split from CVE-2024-4712.

INFO

Published Date :

2024-09-26T01:36:26.364Z

Last Modified :

2024-09-26T15:02:10.145Z

Source :

PaperCut
AFFECTED PRODUCTS

The following products are affected by CVE-2024-8405 vulnerability.

Vendors Products
Papercut
  • Papercut Mf
  • Papercut Ng
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-8405.

URL Resource
https://www.papercut.com/kb/Main/Security-Bulletin-May-2024/ cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact