CVE-2026-7824

Name of the Vulnerable Software and Affected Versions PaperCut Hive Ricoh embedded application (affected versions not specified)

Description An issue exists where the application records administrative credentials in plain text within log files when the "Deep Logging" (diagnostic) mode is enabled. An attacker with administrative access to the PaperCut Hive management portal can remotely enable this mode and retrieve sensitive device passwords after an authorized user authenticates at the device, potentially enabling lateral movement or unauthorized configuration of the physical print hardware.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.