What is CVE-2024-1654?

CVE-2024-1654 is a high-severity vulnerability in Papercut Ng, Mf, classified under CWE-183. CVSS score: 7.2/10. Published 2024-03-14.

How severe is CVE-2024-1654?

High severity. CVSS v3 base score is 7.2 out of 10.

Is CVE-2024-1654 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Papercut Ng, Mf

CVE-2024-1654

This vulnerability potentially allows unauthorized write operations which may lead to remote code execution. An attacker must already have authenticated admin access and knowledge of both an internal system identifier and details of anothe…

EPSS: 0.042 (88.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.2 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H.

Affected products

Papercut Ng, Mf — versions 0

Weakness classification (CWE)

CWE-183

Public proof-of-concept exploits

References

www.papercut.com/kb/Main/Security-Bulletin-March-2024

Frequently asked questions

What is CVE-2024-1654?: CVE-2024-1654 is a high-severity vulnerability in Papercut Ng, Mf, classified under CWE-183. CVSS score: 7.2/10. Published 2024-03-14.
How severe is CVE-2024-1654?: High severity. CVSS v3 base score is 7.2 out of 10.
Is CVE-2024-1654 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.