CVE-2023-2533

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jun 20, 2023

Updated: Jul 6, 2023

CWE ID 89

Summary

CVE-2023-2533 is a Cross-Site Request Forgery (CSRF) vulnerability affecting PaperCut NG/MF. This issue could enable an attacker to manipulate security settings or execute arbitrary code under specific conditions. The risk is heightened if the target is an admin with an active login session. Exploitation typically involves tricking an admin into clicking on a maliciously crafted link, potentially leading to unauthorized alterations.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

MyBatis

Affected Vendors

Mybatis

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/qAX9BU
https://www.cve.org/CVERecord?id=CVE-2023-2533
https://nvd.nist.gov/vuln/detail/CVE-2023-2533

Back to Vulnerability Database