← volver
CVE-2023-27350

CVE-2023-27350

CVSS 9.8 CRITICALEPSS 100.0%● KEVCWE-284
En resumen

Una falla en PaperCut NG 22.0.5 permite que atacantes salten el login y obtengan control total del servidor sin necesidad de credenciales. Esto es crítico porque cualquiera en la red puede tomar el control del servidor completo.

Detalle técnico

La clase SetupCompleted en PaperCut NG 22.0.5 (Build 63914) contiene una vulnerabilidad de control de acceso inadecuado (CWE-284) que permite a atacantes remotos no autenticados eludir mecanismos de autenticación. La explotación requiere acceso de red al servicio afectado y resulta en ejecución arbitraria de código con privilegios SYSTEM, permitiendo el compromiso completo del servidor.

Resumen generado y traducido por IA a partir de la descripción oficial.
This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG 22.0.5 (Build 63914). Authentication is not required to exploit this vulnerability. The specific flaw exists within the SetupCompleted class. The issue results from improper access control. An attacker can leverage this vulnerability to bypass authentication and execute arbitrary code in the context of SYSTEM. Was ZDI-CAN-18987.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Productos afectados
PaperCut · NG
PoCs públicas encontradas19
githubgithub.com/horizon3ai/CVE-2023-2735056githubgithub.com/imancybersecurity/CVE-2023-27350-POC12githubgithub.com/adhikara13/CVE-2023-273509githubgithub.com/MaanVader/CVE-2023-27350-POC5githubgithub.com/monke443/CVE-2023-273504githubgithub.com/Ap0dexMe0/CVE-2023-273502githubgithub.com/dezso-dfield/CVE-2023-273500githubgithub.com/Royall-Researchers/CVE-2023-273500githubgithub.com/Jenderal92/CVE-2023-273500githubgithub.com/ASG-CASTLE/CVE-2023-273500githubgithub.com/rasan2001/CVE-2023-27350-Ongoing-Exploitation-of-PaperCut-Remote-Code-Execution-Vulnerability0githubgithub.com/joaoaugustom/PaperCut-Authentication_Bypass_and_RCE0githubgithub.com/0xB0y426/CVE-2023-27350-PoC0exploitdbwww.exploit-db.com/exploits/51452no verificadocve_referencepacketstormsecurity.com/files/172022/PaperCut-NG-MG-22.0.4-Authentication-Bypass.htmlno verificadocve_referencepacketstormsecurity.com/files/172512/PaperCut-NG-MG-22.0.4-Remote-Code-Execution.htmlno verificadocve_referencepacketstormsecurity.com/files/172780/PaperCut-PaperCutNG-Authentication-Bypass.htmlno verificadoexploitdbwww.exploit-db.com/exploits/51391no verificadocve_referencepacketstormsecurity.com/files/171982/PaperCut-MF-NG-Authentication-Bypass-Remote-Code-Execution.htmlno verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://packetstormsecurity.com/files/171982/PaperCut-MF-NG-Authentication-Bypass-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/172022/PaperCut-NG-MG-22.0.4-Authentication-Bypass.htmlhttp://packetstormsecurity.com/files/172512/PaperCut-NG-MG-22.0.4-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/172780/PaperCut-PaperCutNG-Authentication-Bypass.htmlhttps://news.sophos.com/en-us/2023/04/27/increased-exploitation-of-papercut-drawing-blood-around-the-internet/https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-27350https://www.papercut.com/kb/Main/PO-1216-and-PO-1219https://www.zerodayinitiative.com/advisories/ZDI-23-233/