CVE-2024-1222 Information

Description

This allows attackers to use a maliciously formed API request to gain access to an API authorization level with elevated privileges. This applies to a small subset of PaperCut NG/MF API calls.

Reference

https://www.papercut.com/kb/Main/Security-Bulletin-March-2024