Name of the Vulnerable Software and Affected Versions:

PaperCut Print Deploy (affected versions not specified)

Description:

PaperCut Print Deploy, an optional component integrated with PaperCut NG/MF, is susceptible to man-in-the-middle attacks if not correctly configured with a trusted certificate. Insufficient documentation regarding SSL configuration may lead to misconfiguration of the client installation, potentially exposing communication between clients and the server.

Recommendations:

Use valid certificates to secure installations.

Follow the updated documentation to ensure correct SSL configuration.

If using private CAs or self-signed certificates, ensure the Certification Authority certificate, or the self-signed certificate if using only one, is copied to the operating system's trust store and the Java key store.