Lucene search

CVE-2023-27350

🗓️ 20 Apr 2023 00:00:00Reported by AttackerKBType

Remote code execution in PaperCut NG 22.0.5 (Build 63914) allows unauthenticated attacker to execute arbitrary code in the context of SYSTEM

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 66
Malwarebytes	Update your PaperCut application servers now: Exploits in the wild	26 Apr 202304:00	–	malwarebytes
Malwarebytes	Ransomware review: May 2023	8 May 202313:45	–	malwarebytes
Rapid7 Blog	CVE-2023-27350: Ongoing Exploitation of PaperCut Remote Code Execution Vulnerability	17 May 202318:35	–	rapid7blog
Rapid7 Blog	Metasploit Weekly Wrap-Up	9 Jun 202322:02	–	rapid7blog
Rapid7 Blog	What’s New in InsightVM and Nexpose: Q2 2023 in Review	29 Jun 202313:00	–	rapid7blog
Rapid7 Blog	Metasploit 2023 Annual Wrap-Up: Dec. 29, 2023	29 Dec 202319:38	–	rapid7blog
The Hacker News	Researchers Uncover New High-Severity Vulnerability in PaperCut Software	5 Aug 202304:13	–	thn
The Hacker News	Microsoft Confirms PaperCut Servers Used to Deliver LockBit and Cl0p Ransomware	27 Apr 202308:20	–	thn
The Hacker News	CL0P's Ransomware Rampage - Security Measures for 2024	9 Apr 202411:24	–	thn
The Hacker News	Microsoft Warns of State-Sponsored Attacks Exploiting Critical PaperCut Vulnerability	9 May 202308:53	–	thn

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
github	www.github.com/horizon3ai/CVE-2023-27350/blob/main/CVE-2023-27350.py
zerodayinitiative	www.zerodayinitiative.com/advisories/ZDI-23-233/
papercut	www.papercut.com/kb/Main/PO-1216-and-PO-1219
huntress	www.huntress.com/blog/critical-vulnerabilities-in-papercut-print-management-software
horizon3	www.horizon3.ai/papercut-cve-2023-27350-deep-dive-and-indicators-of-compromise/
packetstormsecurity	www.packetstormsecurity.com/files/171982/PaperCut-MF-NG-Authentication-Bypass-Remote-Code-Execution.html
packetstormsecurity	www.packetstormsecurity.com/files/172022/PaperCut-NG-MG-22.0.4-Authentication-Bypass.html
news	www.news.sophos.com/en-us/2023/04/27/increased-exploitation-of-papercut-drawing-blood-around-the-internet/
packetstormsecurity	www.packetstormsecurity.com/files/172512/PaperCut-NG-MG-22.0.4-Remote-Code-Execution.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Apr 2023 00:00Current

9.7High risk

Vulners AI Score9.7

CVSS39.8

EPSS0.94257

SSVC