CVE-2023-27350

Published Apr 20, 2023

Last updated 5 months ago

Exploit known

Overview

Description: This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG 22.0.5 (Build 63914). Authentication is not required to exploit this vulnerability. The specific flaw exists within the SetupCompleted class. The issue results from improper access control. An attacker can leverage this vulnerability to bypass authentication and execute arbitrary code in the context of SYSTEM. Was ZDI-CAN-18987.
Source: zdi-disclosures@trendmicro.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL

CVSS 3.0

Type: Secondary
Base score: 9.8
Impact score: 5.9
Exploitability score: 3.9
Vector string: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Severity: CRITICAL

Known exploits

Data from CISA

Vulnerability name: PaperCut MF/NG Improper Access Control Vulnerability
Exploit added on: Apr 21, 2023
Exploit action due: May 12, 2023
Required action: Apply updates per vendor instructions.

Weaknesses

zdi-disclosures@trendmicro.com: CWE-284
nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Day 27 #100DaysofCyberSecurity Today I researched two vulnerabilities which are; 1. CVE-2023-27350 2. CVE-2023-23752 1. PaperCut (CVE-2023-27350) vulnerability, which allowed authorisation bypass in PaperCut Print Management software leading to remote code execution.
@Nwaikwu_Bash
Oct 27, 2024 10:20 PM
43 Impressions
0 Retweets
2 Likes
0 Bookmarks
1 Reply
0 Quotes

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0D42B6B6-D35D-4CCD-BB11-B06658BA1959",
            "versionEndExcluding": "20.1.7",
            "versionStartIncluding": "8.0.0"
          },
          {
            "criteria": "cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D231C34-F58C-4CA1-B158-64778AC17991",
            "versionEndExcluding": "21.2.11",
            "versionStartIncluding": "21.0.0"
          },
          {
            "criteria": "cpe:2.3:a:papercut:papercut_mf:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A326E88D-635E-4AC1-B5CE-455306FC9D55",
            "versionEndExcluding": "22.0.9",
            "versionStartIncluding": "22.0.0"
          },
          {
            "criteria": "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ECE9BB0C-3650-46F4-A0D4-EAAF15E368D7",
            "versionEndExcluding": "20.1.7",
            "versionStartIncluding": "8.0.0"
          },
          {
            "criteria": "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4DE19845-02F0-4BB9-BECB-49B34FACB55D",
            "versionEndExcluding": "21.2.11",
            "versionStartIncluding": "21.0.0"
          },
          {
            "criteria": "cpe:2.3:a:papercut:papercut_ng:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C1852E7B-0B3F-4208-A26E-CB117E0C0CD8",
            "versionEndExcluding": "22.0.9",
            "versionStartIncluding": "22.0.0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 3.0

Known exploits

Weaknesses

Social media

Configurations

References