CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

364 matches found

OSV•added 2023/04/20 4:15 p.m.•0 views

CVE-2023-27350

This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG 22.0.5 Build 63914. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SetupCompleted class. The issue results from improper access control. ...

9.8CVSS6.2AI score0.99999EPSS

Exploits24References8

ATTACKERKB•added 2023/04/20 4:15 p.m.•1 views

CVE-2023-27351

This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG 22.0.5 Build 63914. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SecurityRequestFilter class. The issue results from improper...

8.2CVSS5.9AI score0.7842EPSS

Exploits0References4

NVD•added 2023/04/20 4:15 p.m.•29 views

CVE-2023-27350

9.8CVSS9.9AI score0.99999EPSS

Exploits24References8

NVD•added 2023/04/20 4:15 p.m.•19 views

CVE-2023-27351

This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG 22.0.5 Build 63914. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SecurityRequestFilter class. The issue results from improper...

8.2CVSS8AI score0.7842EPSS

Exploits0References3

Prion•added 2023/04/20 4:15 p.m.•16 views

Authentication flaw

This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG 22.0.5 Build 63914. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SecurityRequestFilter class. The issue results from improper...

6.4CVSS7.7AI score0.7842EPSS

Exploits0References2Affected Software2

Prion•added 2023/04/20 4:15 p.m.•35 views

Authentication flaw

7.5CVSS9.8AI score0.99999EPSS

Exploits24References7Affected Software2

Vulnrichment•added 2023/04/20 12:0 a.m.•6 views

CVE-2023-27350

9.8CVSS10AI score0.99999EPSS

Exploits24References7

Vulnrichment•added 2023/04/20 12:0 a.m.•8 views

CVE-2023-27351

This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG 22.0.5 Build 63914. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SecurityRequestFilter class. The issue results from improper...

8.2CVSS7.8AI score0.7842EPSS

Exploits0References2

ATTACKERKB•added 2023/04/20 12:0 a.m.•141 views

CVE-2023-27350

9.8CVSS10AI score0.99999EPSS

In wildExploits24References11

CNNVD•added 2023/04/20 12:0 a.m.•3 views

PaperCut NG 访问控制错误漏洞

PaperCut NG is a suite of next-generation printer control software from PaperCut Australia. An Access Control Error vulnerability exists in PaperCut NG version 22.0.5, which stems from improper access control and can be exploited by an attacker to bypass authentication and execute arbitrary code ...

9.8CVSS9AI score0.99999EPSS

Exploits24References11

Cvelist•added 2023/04/20 12:0 a.m.•32 views

CVE-2023-27351

This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG 22.0.5 Build 63914. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SecurityRequestFilter class. The issue results from improper...

8.2CVSS8.4AI score0.7842EPSS

Exploits0References2

CNNVD•added 2023/04/20 12:0 a.m.•9 views

PaperCut NG 授权问题漏洞

PaperCut NG is a suite of next-generation printer control software from PaperCut Australia. An authorization issue vulnerability exists in PaperCut NG version 22.0.5 that stems from improper authentication and can be exploited by an attacker to bypass authentication on the system...

8.2CVSS8AI score0.7842EPSS

Exploits0References3

CVE•added 2023/04/20 12:0 a.m.•240 views

CVE-2023-27351

PaperCut NG 22.0.5 (Build 63914) contains an authentication bypass vulnerability in the SecurityRequestFilter class due to improper implementation of the authentication algorithm. This allows remote attackers to bypass authentication without user interaction. Evidence across multiple sources (ZDI...

8.2CVSS9.2AI score0.7842EPSS

In wildExploits0References3Affected Software2

CVE•added 2023/04/20 12:0 a.m.•1141 views

CVE-2023-27350

CVE-2023-27350 affects PaperCut MF/NG and allows unauthenticated remote code execution by exploiting improper access control in SetupCompleted, enabling code execution as SYSTEM. Public PoCs and exploits exist (e.g., GitHub and Exploit-DB entries) targeting PaperCut MF/NG 8.0+ and various 22.x bu...

9.8CVSS9.1AI score0.99999EPSS

In wildExploits24References8Affected Software2

VulnCheck KEV•added 2023/04/18 12:0 a.m.•1 views

VulnCheck KEV: CVE-2023-27350

PaperCut MF/NG contains an improper access control vulnerability within the SetupCompleted class that allows authentication bypass and code execution in the context of system...

9.8CVSS7.8AI score0.99999EPSS

Exploits24References1

Zero Day Initiative•added 2023/03/14 12:0 a.m.•62 views

PaperCut NG SecurityRequestFilter Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SecurityRequestFilter class. The issue results from improper implementation of the...

8.2CVSS8.7AI score0.7842EPSS

Exploits0References1

Positive Technologies•added 2023/03/14 12:0 a.m.•1 views

PT-2023-2485

Name of the Vulnerable Software and Affected Versions PaperCut NG version 22.0.5 Build 63914 Description This issue allows remote attackers to bypass authentication on affected installations. The flaw exists within the SecurityRequestFilter class due to improper implementation of the authenticati...

8.5CVSS8.9AI score0.7842EPSS

Exploits0References34

Positive Technologies•added 2023/03/14 12:0 a.m.•5 views

PT-2023-2482

The vulnerable software is PaperCut NG, specifically version 22.0.5 Build 63914. This version is affected by an improper access control flaw in the SetupCompleted class, which allows remote attackers to bypass authentication and execute arbitrary code in the context of SYSTEM. An exploit for this...

9.8CVSS7.7AI score0.99999EPSS

Exploits24References110

Zero Day Initiative•added 2023/03/14 12:0 a.m.•213 views

PaperCut NG SetupCompleted Improper Access Control Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SetupCompleted class. The issue results from improper access control. An attacker can...

9.8CVSS9.4AI score0.99999EPSS

Exploits24References1

BDU FSTEC•added 2021/09/28 12:0 a.m.•4 views

The vulnerability of the Application Server component in network-based printing control systems like PaperCut MF and PaperCut NG allows attackers to execute arbitrary code and increase their privileges.

The vulnerability of the Application Server component in network-based printing control systems like PaperCut MF and PaperCut NG is related to errors in processing input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code and increase their privileges...

10CVSS8.2AI score0.02488EPSS

Exploits0References5Affected Software3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by