CVE Alert: CVE-2023-2533
Vulnerability Summary: CVE-2023-2533
A Cross-Site Request Forgery (CSRF) vulnerability has been identified in PaperCut NG/MF, which, under specific conditions, could potentially enable an attacker to alter security settings or execute arbitrary code. This could be exploited if the target is an admin with a current login session. Exploiting this would typically involve the possibility of deceiving an admin into clicking a specially crafted malicious link, potentially leading to unauthorized changes.
Affected Endpoints:
No affected endpoints listed.
Published Date:
Invalid Date
🔥 CVSS Score:
Exploit Status:
Known Exploited VulnerabilityEPS Score: undefined | Ranking EPS: undefined
References:
- https://fluidattacks.com/advisories/arcangel/
- https://www.papercut.com/kb/Main/SecurityBulletinJune2023
Recommended Action:
No proposed action available. Please refer to vendor documentation for updates.
A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.
If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below
To keep up to date follow us on the below channels.
