PaperCut NG is a printing management solution. Some of its version are vulnerable to an authentication bypass. An attacker can leverage this vulnerability to execute arbitrary code in the context of SYSTEM.
The Stormshield Customer Security Lab team has deployed two SNS protection signatures, to detect and block the authentication bypass itself, and the code execution.
| ID | Name |
| http:mix.348 | Authentication bypass attempt on PaperCut NG server (CVE-2023-27350) |
| http:mix.349 | Exploitation of a RCE vulnerability on Papercut NG server (CVE-2023-27350) |