Race Condition Vulnerability in PaperCut MF Affecting HP Multifunction Devices
CVE-2026-6180

4.1MEDIUM

Key Information:

Vendor: Papercut
Status: Papercut Ng/mf
Vendor: CVE Published:; 5 May 2026

What is CVE-2026-6180?

A race condition in PaperCut MF arises when processing badge-swipe data from specific HP multifunction devices. This issue occurs under certain network conditions where packet loss and out-of-order sequence counters take place. As a result, the server may misprocess fragmented data, leading to a potentially serious security situation. If a sequence reset notification does not reach the server, initial data chunks may be rejected, while incorrectly accepted subsequent chunks can result in a truncated badge ID string. In environments with customized post-processing scripts for badge IDs, this truncated string can mistakenly be transformed into a valid ID for another user, causing unauthorized session access and incorrect user logins.

Affected Version(s)

PaperCut NG/MF 0 < 24.1.9

PaperCut NG/MF 0 < 25.0.10

References

https://www.papercut.com/kb/Main/papercut-ng-mf-and-paper...

CVSS V4

Score:

4.1

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Physical

Attack Complexity:

Low

Attack Required:

Physical

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 5, 2026
Vulnerability Reserved
Apr 13, 2026

CVE-2026-6180 Data

JSON

Papercut

What is CVE-2026-6180?

Affected Version(s)

References

CVSS V4

Timeline