New vulnerabilities affecting PaperCut MF & PaperCut NG application and site servers have been detected. We recommend updating PaperCut to the latest version as per the instructions below, where applicable.

Vulnerability Name	CVE-2023-27350 improper access control issue
Severity	Critical
CVSS	9.8
Affected Products	PaperCut MF & NG

Current Description:

Successful exploitation of this security defect allows a remote, unauthenticated attacker to bypass authentication and execute arbitrary code with System privileges. The exploits affect PaperCut MF & PaperCut NG application and site servers. Please note that client software on end-user devices is not affected.

Resolution:

Update the software as per the instructions here:

APRIL 19 UPDATE | PaperCut MF/NG vulnerability bulletin (March 2023) | PaperCut

Vulnerability Affecting PaperCut MF & Papercut NG: CVE-2023-27350 improper access control issue

Current Description:

Resolution:

You Can Also Read...

8 Things You Need to Stop Doing & Start Automating

Security Alert: CVE-2024-23225 and CVE-2024-23296

Security Alert: Connectwise ScreenConnect

Security Alert: Microsoft Outlook

Subscribe to Security Alerts

Recent Posts

Categories

24/7 Support

20+ Years Experience

Award Winning Service

Trusted Technology Provider