CVE-2024-44860 is a high-severity information disclosure vulnerability identified in the /Letter/PrintQr/ endpoint of Solvait version 24.4.2. The vulnerability arises from insufficient access control mechanisms (CWE-284) on this specific API endpoint, which allows attackers to craft requests that bypass authentication and retrieve sensitive data. The vulnerability is remotely exploitable over the network without any privileges or user interaction, as indicated by the CVSS vector AV:N/AC:L/PR:N/UI:N. The impact is limited to confidentiality, with no direct effect on integrity or availability. Although the affected versions are not explicitly enumerated beyond 24.4.2, the vulnerability likely affects deployments running this version. No patches or mitigations have been officially released yet, and there are no known active exploits in the wild. The vulnerability was reserved in August 2024 and published in late September 2024. The lack of authentication on the endpoint suggests a design flaw in access control enforcement, potentially exposing sensitive business or user data handled by the PrintQr functionality. Organizations relying on Solvait should conduct immediate risk assessments and implement compensating controls to prevent unauthorized access.

The primary impact of CVE-2024-44860 is the unauthorized disclosure of sensitive information, which can lead to data breaches, privacy violations, and potential regulatory non-compliance for affected organizations. Attackers exploiting this vulnerability can gain access to confidential data without authentication, increasing the risk of espionage, identity theft, or competitive disadvantage. Although the vulnerability does not affect system integrity or availability, the exposure of sensitive data alone can have severe reputational and financial consequences. Organizations in sectors handling sensitive or regulated data—such as healthcare, finance, government, and critical infrastructure—are particularly at risk. The ease of exploitation (no authentication or user interaction required) and network accessibility make this vulnerability attractive for attackers. The absence of known exploits in the wild currently reduces immediate risk but does not eliminate the threat, especially as public disclosure may prompt adversaries to develop exploits. Without a patch, organizations face ongoing exposure, emphasizing the need for urgent mitigation.

Until an official patch is released, organizations should implement the following specific mitigations: 1) Restrict network access to the /Letter/PrintQr/ endpoint using firewalls, VPNs, or IP whitelisting to limit exposure to trusted users and systems only. 2) Employ web application firewalls (WAFs) with custom rules to detect and block suspicious or malformed requests targeting this endpoint. 3) Conduct thorough logging and monitoring of access to the vulnerable endpoint to detect anomalous activity indicative of exploitation attempts. 4) Review and tighten access control policies within Solvait configurations to ensure that sensitive endpoints require proper authentication and authorization. 5) Engage with Solvait vendor support to obtain timelines for patches or updates and apply them promptly once available. 6) Consider temporary disabling or isolating the affected functionality if feasible without disrupting critical operations. 7) Educate security teams and incident responders about this vulnerability to prepare for potential exploitation scenarios. These targeted actions go beyond generic advice by focusing on access restriction, detection, and vendor coordination specific to the vulnerable endpoint.