CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
Percentile
99.8%
Added: 05/12/2023
PaperCut is print management software. It includes a web interface written in Java.
An authentication bypass vulnerability in the **SetupCompleted**
class allows a remote, unauthenticated attacker to execute arbitrary code in the context of SYSTEM.
Upgrade to PaperCut MF or NG 20.1.7, 21.2.11, or 22.0.9 or higher (build 65657 or higher).
<https://www.papercut.com/kb/Main/PO-1216-and-PO-1219>
<https://www.horizon3.ai/papercut-cve-2023-27350-deep-dive-and-indicators-of-compromise/>
Windows