PT-2019-5974 · Papercut · Papercut Ng+1

Published

2019-02-20

Updated

2019-02-21

CVE-2019-8948

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions PaperCut MF versions prior to 18.3.6 PaperCut NG versions prior to 18.3.6

Description The issue exists due to the lack of measures to neutralize special elements in the software, allowing a remote attacker to inject scripts through the user interface.

Recommendations For PaperCut MF versions prior to 18.3.6, update to version 18.3.6 or later. For PaperCut NG versions prior to 18.3.6, update to version 18.3.6 or later.

Fix

Special Elements Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-74

Related Identifiers

BDU:2021-04054

CVE-2019-8948

Affected Products

Papercut Mf

Papercut Ng

PT-2019-5974 · Papercut · Papercut Ng+1

CVE-2019-8948

Weakness Enumeration

Related Identifiers

Affected Products

References · 6