CVE-2023-39143

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 4, 2023

Updated: Aug 8, 2023

CWE ID 22

Summary

CVE-2023-39143 is a vulnerability affecting PaperCut NG and PaperCut MF versions prior to 22.1.3 on Windows systems. This issue permits attackers to conduct path traversal, granting them the ability to upload, read, or delete arbitrary files. This vulnerability carries significant risk, especially when external device integration is enabled, as it can ultimately lead to remote code execution.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

PaperCut MF
PaperCut NG

Affected Vendors

Papercut

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sG8lS8
https://www.cve.org/CVERecord?id=CVE-2023-39143
https://nvd.nist.gov/vuln/detail/CVE-2023-39143

Back to Vulnerability Database