Actively exploited vulnerability

CVE-2023-27350: PaperCut MF/NG Improper Access Control Vulnerability

PaperCut MF/NG contains an improper access control vulnerability within the SetupCompleted class that allows authentication bypass and code execution in the context of system.

CISA KEV source 21 Apr 2023 added 12 May 2023 remediation due

Affected product

PaperCut ยท MF/NG

Known ransomware use: Known

Required action

Follow the source advisory and validate exposure in your environment.

Apply updates per vendor instructions.

Related Yasna coverage

Recent reporting that mentions CVE-2023-27350.