CVE-2023-27351: PaperCut NG/MF Improper Authentication Vulnerability.
PaperCut NG/MF Improper Authentication Vulnerability. PaperCut NG/MF contains an improper authentication vulnerability that could allow remote attackers to bypass authentication on affected installations via the SecurityRequestFilter class.
- CISA KEV-listed (remediation due 2026-05-04)
- used in ransomware campaigns
- EPSS 65.6% (98.5% percentile)