← voltar
CVE-2023-27350

CVE-2023-27350

CVSS 9.8 CRITICALEPSS 100.0%● KEVCWE-284
Em resumo

Uma falha no PaperCut NG 22.0.5 permite que atacantes ignorem o login e ganhem controle total do servidor sem precisar de credenciais. Isso é crítico porque qualquer pessoa na rede pode assumir o controle do servidor inteiro.

Detalhe técnico

A classe SetupCompleted no PaperCut NG 22.0.5 (Build 63914) contém uma vulnerabilidade de controle de acesso inadequado (CWE-284) que permite a atacantes remotos não autenticados contornar mecanismos de autenticação. A exploração requer acesso de rede ao serviço afetado e resulta em execução arbitrária de código com privilégios SYSTEM, possibilitando comprometimento completo do servidor.

Resumo gerado e traduzido por IA a partir da descrição oficial.
This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG 22.0.5 (Build 63914). Authentication is not required to exploit this vulnerability. The specific flaw exists within the SetupCompleted class. The issue results from improper access control. An attacker can leverage this vulnerability to bypass authentication and execute arbitrary code in the context of SYSTEM. Was ZDI-CAN-18987.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
PaperCut · NG
PoCs públicas encontradas19
githubgithub.com/horizon3ai/CVE-2023-2735056githubgithub.com/imancybersecurity/CVE-2023-27350-POC12githubgithub.com/adhikara13/CVE-2023-273509githubgithub.com/MaanVader/CVE-2023-27350-POC5githubgithub.com/monke443/CVE-2023-273504githubgithub.com/Ap0dexMe0/CVE-2023-273502githubgithub.com/dezso-dfield/CVE-2023-273500githubgithub.com/Royall-Researchers/CVE-2023-273500githubgithub.com/Jenderal92/CVE-2023-273500githubgithub.com/ASG-CASTLE/CVE-2023-273500githubgithub.com/rasan2001/CVE-2023-27350-Ongoing-Exploitation-of-PaperCut-Remote-Code-Execution-Vulnerability0githubgithub.com/joaoaugustom/PaperCut-Authentication_Bypass_and_RCE0githubgithub.com/0xB0y426/CVE-2023-27350-PoC0exploitdbwww.exploit-db.com/exploits/51452não verificadocve_referencepacketstormsecurity.com/files/172022/PaperCut-NG-MG-22.0.4-Authentication-Bypass.htmlnão verificadocve_referencepacketstormsecurity.com/files/172512/PaperCut-NG-MG-22.0.4-Remote-Code-Execution.htmlnão verificadocve_referencepacketstormsecurity.com/files/172780/PaperCut-PaperCutNG-Authentication-Bypass.htmlnão verificadoexploitdbwww.exploit-db.com/exploits/51391não verificadocve_referencepacketstormsecurity.com/files/171982/PaperCut-MF-NG-Authentication-Bypass-Remote-Code-Execution.htmlnão verificado
⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://packetstormsecurity.com/files/171982/PaperCut-MF-NG-Authentication-Bypass-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/172022/PaperCut-NG-MG-22.0.4-Authentication-Bypass.htmlhttp://packetstormsecurity.com/files/172512/PaperCut-NG-MG-22.0.4-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/172780/PaperCut-PaperCutNG-Authentication-Bypass.htmlhttps://news.sophos.com/en-us/2023/04/27/increased-exploitation-of-papercut-drawing-blood-around-the-internet/https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-27350https://www.papercut.com/kb/Main/PO-1216-and-PO-1219https://www.zerodayinitiative.com/advisories/ZDI-23-233/