Lucene search
K

367 matches found

CNNVD
CNNVD
added 2023/09/13 12:0 a.m.4 views

PaperCut NG Authorization Issues Vulnerability

PaperCut NG is a suite of next-generation printer control software from PaperCut Australia. An authorization issue vulnerability exists in PaperCut NG versions 22.0.12 and earlier, which stems from a default that allows unauthenticated XMLRPC commands to be run...

6.5CVSS7AI score0.03568EPSS
Exploits2References3
BDU FSTEC
BDU FSTEC
added 2023/09/04 12:0 a.m.5 views

The vulnerability of the External User Lookup function in printing control software such as PaperCut MF and PaperCut NG allows a violator to execute arbitrary code.

The vulnerability of the External User Lookup function in printing control software such as PaperCut MF and PaperCut NG is related to improper code generation. Exploiting this vulnerability could allow a remote attacker to generate arbitrary codes...

8.5CVSS7.4AI score0.5809EPSS
Exploits0References4Affected Software2
Zero Day Initiative
Zero Day Initiative
added 2023/08/30 12:0 a.m.21 views

PaperCut NG External User Lookup Code Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of PaperCut NG. Authentication is required to exploit this vulnerability. The specific flaw exists within the External User Lookup functionality. The issue results from the lack of proper validation of ...

7.2CVSS7.4AI score0.5809EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/08/28 12:0 a.m.6 views

PT-2023-5170 · Papercut · Papercut Ng

Name of the Vulnerable Software and Affected Versions: PaperCut NG versions 22.0.12 and below Description: The issue is related to the implementation of the XML-RPC protocol in PaperCut NG, which has weaknesses in its authentication procedure. This can allow a remote attacker to execute arbitrary...

6.5CVSS7AI score0.03568EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2023/08/23 12:0 a.m.33 views

PaperCut MF FileUploadAuthenticationFilter Authentication Bypass (CVE-2023-3486)

Binary data papercutmfcve-2023-3486.nbin...

8.2CVSS7.9AI score0.75794EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/08/23 12:0 a.m.34 views

PaperCut NG FileUploadAuthenticationFilter Authentication Bypass (CVE-2023-3486)

Binary data papercutngcve-2023-3486.nbin...

8.2CVSS7.9AI score0.75794EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2023/08/05 4:13 a.m.465 views

Researchers Uncover New High-Severity Vulnerability in PaperCut Software

Cybersecurity researchers have discovered a new high-severity security flaw in PaperCut print management software for Windows that could result in remote code execution under specific circumstances. Tracked as CVE-2023-39143 CVSS score: 8.4, the flaw impacts PaperCut NG/MF prior to version 22.1.3...

9.8CVSS7.9AI score0.99999EPSS
Exploits25
OSV
OSV
added 2023/08/04 5:15 p.m.5 views

CVE-2023-39143

PaperCut NG and PaperCut MF before 22.1.3 on Windows allow path traversal, enabling attackers to upload, read, or delete arbitrary files. This leads to remote code execution when external device integration is enabled a very common configuration...

9.8CVSS6.4AI score0.78696EPSS
Exploits1References2
Prion
Prion
added 2023/08/04 5:15 p.m.30 views

Path traversal

PaperCut NG and PaperCut MF before 22.1.3 on Windows allow path traversal, enabling attackers to upload, read, or delete arbitrary files. This leads to remote code execution when external device integration is enabled a very common configuration...

7.5CVSS9.8AI score0.78696EPSS
Exploits1References2Affected Software2
Vulnrichment
Vulnrichment
added 2023/08/04 12:0 a.m.5 views

CVE-2023-39143

PaperCut NG and PaperCut MF before 22.1.3 on Windows allow path traversal, enabling attackers to upload, read, or delete arbitrary files. This leads to remote code execution when external device integration is enabled a very common configuration...

7.9AI score0.78696EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/08/04 12:0 a.m.222 views

CVE-2023-39143

PaperCut NG and PaperCut MF before 22.1.3 on Windows allow path traversal, enabling attackers to upload, read, or delete arbitrary files. This leads to remote code execution when external device integration is enabled a very common configuration...

10AI score0.78696EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/08/04 12:0 a.m.3 views

PT-2023-26803 · Papercut · Papercut Ng +1

Name of the Vulnerable Software and Affected Versions: PaperCut NG and PaperCut MF versions prior to 22.1.3 Description: The issue allows path traversal, enabling attackers to upload, read, or delete arbitrary files, leading to remote code execution when external device integration is enabled. Th...

9.8CVSS9.6AI score0.78696EPSS
Exploits1References42
CNNVD
CNNVD
added 2023/08/04 12:0 a.m.4 views

Papercut PaperCut MF and PaperCut NG Path Traversal Vulnerabilities

Papercut PaperCut MF is a suite of multifunction printer control software from Papercut Australia.PaperCut NG is a suite of next-generation printer control software from PaperCut Australia. A security vulnerability exists in PaperCut NG and PaperCut MF that stems from a path traversal vulnerabili...

9.8CVSS7AI score0.78696EPSS
Exploits1References3
CVE
CVE
added 2023/08/04 12:0 a.m.136 views

CVE-2023-39143

CVE-2023-39143 affects PaperCut NG/MF before 22.1.3 on Windows. The vulnerability is a path traversal flaw that allows an unauthenticated actor to read, upload, or delete arbitrary files, which can lead to remote code execution when external device integration is enabled. The issue is documented ...

9.8CVSS9.7AI score0.78696EPSS
In wildExploits1References2Affected Software2
OSV
OSV
added 2023/07/25 1:15 p.m.5 views

CVE-2023-3486

An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage. This could exhaust system resources and prevent the service from operating as expected...

7.5CVSS5.9AI score0.75794EPSS
Exploits0References2
NVD
NVD
added 2023/07/25 1:15 p.m.27 views

CVE-2023-3486

An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage. This could exhaust system resources and prevent the service from operating as expected...

8.2CVSS8.4AI score0.75794EPSS
Exploits0References2
Prion
Prion
added 2023/07/25 1:15 p.m.34 views

Authentication flaw

An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage. This could exhaust system resources and prevent the service from operating as expected...

5CVSS7.7AI score0.75794EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2023/07/25 12:50 p.m.33 views

CVE-2023-3486 PaperCut NG Unauthenticated File Upload

An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage. This could exhaust system resources and prevent the service from operating as expected...

8.2CVSS8.6AI score0.75794EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/07/25 12:50 p.m.22 views

CVE-2023-3486 PaperCut NG Unauthenticated File Upload

An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage. This could exhaust system resources and prevent the service from operating as expected...

8.2CVSS7.3AI score0.75794EPSS
Exploits0References2
CVE
CVE
added 2023/07/25 12:50 p.m.114 views

CVE-2023-3486

CVE-2023-3486: An authentication bypass in PaperCut NG (versions 22.0.12 and earlier) could allow a remote, unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage, potentially exhausting resources and disrupting service. Related Nessus entries also cite PaperCut...

8.2CVSS8AI score0.75794EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder