PaperCut NG/MF Chained Path Traversal Vulnerability in Authenticated API (CVE-2023-39143)

Security researchers at Horizon3.ai have discovered two path traversal vulnerabilities in PapertCut NG/MF application servers. An attacker with direct IP address access may chain these vulnerabilities to read and write arbitrary files. CVE-2023-39143 has been rated with a CVSS score of 8.4 PaperCut is a comprehensive Print management software used in many industries worldwide. To … Continue reading “PaperCut NG/MF Chained Path Traversal Vulnerability in Authenticated API (CVE-2023-39143)”