CVE-2024-3037

🗓️ 14 May 2024 00:12:37Reported by PaperCutType

Arbitrary file deletion in PaperCut NG/MF Windows servers with Web Print enable

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2024-3037	26 Sep 202404:35	–	circl
CNNVD	PaperCut NG和PaperCut MF 后置链接漏洞	14 May 202400:00	–	cnnvd
Cvelist	CVE-2024-3037 Arbitrary File Deletion in PaperCut NG/MF Web Print	14 May 202400:12	–	cvelist
EUVD	EUVD-2024-31645	3 Oct 202520:07	–	euvd
NVD	CVE-2024-3037	14 May 202415:39	–	nvd
Tenable Nessus	PaperCut MF < 23.0.9 Multiple Vulnerabilities	16 Oct 202400:00	–	nessus
Tenable Nessus	PaperCut NG < 23.0.9 Multiple Vulnerabilities	16 Oct 202400:00	–	nessus
RedhatCVE	CVE-2024-3037	5 Feb 202510:08	–	redhatcve
Vulnrichment	CVE-2024-3037 Arbitrary File Deletion in PaperCut NG/MF Web Print	14 May 202400:12	–	vulnrichment
Zero Day Initiative	PaperCut NG pc-web-print Link Following Local Privilege Escalation Vulnerability	31 Jul 202400:00	–	zdi

NVD

Node

papercut papercut_mfRange<23.0.9

papercut papercut_ngRange<23.0.9

AND

microsoft windowsMatch-

[
  {
    "defaultStatus": "unaffected",
    "modules": [
      "Web Print"
    ],
    "platforms": [
      "Windows"
    ],
    "product": "PaperCut NG, PaperCut MF",
    "vendor": "PaperCut",
    "versions": [
      {
        "changes": [
          {
            "at": "23.0.9",
            "status": "unaffected"
          }
        ],
        "lessThan": "23.0.9",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
papercut	www.papercut.com/kb/Main/Security-Bulletin-May-2024/
papercut	www.papercut.com/kb/Main/security-bulletin-may-2024/

27 Jan 2025 18:05Current

7.5High risk

Vulners AI Score7.5

CVSS 3.17.8

EPSS0.00073

SSVC