367 matches found
PaperCut NG Authorization Issues Vulnerability
PaperCut NG is a suite of next-generation printer control software from PaperCut Australia. An authorization issue vulnerability exists in PaperCut NG versions 22.0.12 and earlier, which stems from a default that allows unauthenticated XMLRPC commands to be run...
The vulnerability of the External User Lookup function in printing control software such as PaperCut MF and PaperCut NG allows a violator to execute arbitrary code.
The vulnerability of the External User Lookup function in printing control software such as PaperCut MF and PaperCut NG is related to improper code generation. Exploiting this vulnerability could allow a remote attacker to generate arbitrary codes...
PaperCut NG External User Lookup Code Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PaperCut NG. Authentication is required to exploit this vulnerability. The specific flaw exists within the External User Lookup functionality. The issue results from the lack of proper validation of ...
PT-2023-5170 · Papercut · Papercut Ng
Name of the Vulnerable Software and Affected Versions: PaperCut NG versions 22.0.12 and below Description: The issue is related to the implementation of the XML-RPC protocol in PaperCut NG, which has weaknesses in its authentication procedure. This can allow a remote attacker to execute arbitrary...
PaperCut MF FileUploadAuthenticationFilter Authentication Bypass (CVE-2023-3486)
Binary data papercutmfcve-2023-3486.nbin...
PaperCut NG FileUploadAuthenticationFilter Authentication Bypass (CVE-2023-3486)
Binary data papercutngcve-2023-3486.nbin...
Researchers Uncover New High-Severity Vulnerability in PaperCut Software
Cybersecurity researchers have discovered a new high-severity security flaw in PaperCut print management software for Windows that could result in remote code execution under specific circumstances. Tracked as CVE-2023-39143 CVSS score: 8.4, the flaw impacts PaperCut NG/MF prior to version 22.1.3...
CVE-2023-39143
PaperCut NG and PaperCut MF before 22.1.3 on Windows allow path traversal, enabling attackers to upload, read, or delete arbitrary files. This leads to remote code execution when external device integration is enabled a very common configuration...
Path traversal
PaperCut NG and PaperCut MF before 22.1.3 on Windows allow path traversal, enabling attackers to upload, read, or delete arbitrary files. This leads to remote code execution when external device integration is enabled a very common configuration...
CVE-2023-39143
PaperCut NG and PaperCut MF before 22.1.3 on Windows allow path traversal, enabling attackers to upload, read, or delete arbitrary files. This leads to remote code execution when external device integration is enabled a very common configuration...
CVE-2023-39143
PaperCut NG and PaperCut MF before 22.1.3 on Windows allow path traversal, enabling attackers to upload, read, or delete arbitrary files. This leads to remote code execution when external device integration is enabled a very common configuration...
PT-2023-26803 · Papercut · Papercut Ng +1
Name of the Vulnerable Software and Affected Versions: PaperCut NG and PaperCut MF versions prior to 22.1.3 Description: The issue allows path traversal, enabling attackers to upload, read, or delete arbitrary files, leading to remote code execution when external device integration is enabled. Th...
Papercut PaperCut MF and PaperCut NG Path Traversal Vulnerabilities
Papercut PaperCut MF is a suite of multifunction printer control software from Papercut Australia.PaperCut NG is a suite of next-generation printer control software from PaperCut Australia. A security vulnerability exists in PaperCut NG and PaperCut MF that stems from a path traversal vulnerabili...
CVE-2023-39143
CVE-2023-39143 affects PaperCut NG/MF before 22.1.3 on Windows. The vulnerability is a path traversal flaw that allows an unauthenticated actor to read, upload, or delete arbitrary files, which can lead to remote code execution when external device integration is enabled. The issue is documented ...
CVE-2023-3486
An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage. This could exhaust system resources and prevent the service from operating as expected...
CVE-2023-3486
An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage. This could exhaust system resources and prevent the service from operating as expected...
Authentication flaw
An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage. This could exhaust system resources and prevent the service from operating as expected...
CVE-2023-3486 PaperCut NG Unauthenticated File Upload
An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage. This could exhaust system resources and prevent the service from operating as expected...
CVE-2023-3486 PaperCut NG Unauthenticated File Upload
An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage. This could exhaust system resources and prevent the service from operating as expected...
CVE-2023-3486
CVE-2023-3486: An authentication bypass in PaperCut NG (versions 22.0.12 and earlier) could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage, potentially exhausting resources and disrupting service. Related Nessus entries also cite PaperCut...