Published on 15 May 2023 | Updated on 15 May 2023
There are reports of active exploitation of a critical vulnerability (CVE-2023-27350) in PaperCut MF (Multifunction) and NG (Next Generation). PaperCut MF and NG are print management solutions employed to manage and control printing and copying activities within users’ networked printing environments.
Successful exploitation of the vulnerability could allow an unauthenticated threat actor to perform remote code execution (RCE) on
PaperCut application servers. The vulnerability is also reportedly being exploited to deploy ransomware on users’ network.
Efforts to detect exploitation attempts should focus on the following three key areas:
The vulnerability affects the following versions of PaperCut:
Users and administrators of affected product versions are advised to update to the latest version immediately.
More information is available here: