CVE-2024-1883

CVSS 3.1 Score 6.3 of 10 (medium)

Details

Published Mar 14, 2024
CWE ID 74

Summary

CVE-2024-1883 is a newly identified reflection Cross-Site Scripting (XSS) vulnerability affecting PaperCut NG/MF application servers. Malicious actors can exploit this weakness by crafting malicious URLs containing scripts. Upon an unsuspecting user clicking on such a link, attackers could potentially gain limited access to the user's session, leading to loss of confidentiality, integrity, or availability. This issue must be addressed promptly to prevent potential security breaches.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share