CVE-2023-27351

Vulnerability updated 4 months ago (2024-05-04T17:46:30.118Z)

Download STIX

Preview STIX

Not enough context has been learned about CVE-2023-27351 for a description yet. However we're tracking it as a Vulnerability profile. Vulnerability: A flaw in software design or implementation

Description last updated:

What's your take? (Question 1 of 5)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Papercut

Vulnerability

Microsoft

Ransomware

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Associated Malware

To see the evidence that has resulted in these malware associations, create a free account

ID	Type	Votes	Profile Description
Clop	Unspecified	3	Clop, also known as Cl0p, is a notorious ransomware group responsible for several high-profile cyberattacks. The group specializes in exploiting vulnerabilities in software and systems to gain unauthorized access, exfiltrate sensitive data, and then extort victims by threatening to release the stole
Lockbit	Unspecified	2	LockBit is a malicious software, or malware, that has been notably active and damaging in the cyber world. Known for its ability to infiltrate systems often without detection, it can steal personal information, disrupt operations, and even hold data hostage for ransom. In the first half of 2024, Loc

Associated Threat Actors

To see the evidence that has resulted in these threatActor associations, create a free account

ID	Type	Votes	Profile Description
TA505	Unspecified	2	TA505, also known as Cl0p Ransomware Gang and Lace Tempest, is a highly active and sophisticated cybercriminal group. The group has been associated with various high-profile cyber-attacks, demonstrating adaptability through a multi-vector approach to their operations. In June 2023, the U.S. Cybersec
Lace Tempest	Unspecified	2	Lace Tempest, a threat actor known for executing actions with malicious intent, has been identified as the orchestrator behind a series of cyber attacks exploiting a zero-day vulnerability in SysAid. The exploit was first brought to light by SysAid and further detailed in a blog post on TuxCare. Thi
fin11	Unspecified	2	FIN11, a threat actor group also known as Lace Tempest or TA505, has been linked to the development and deployment of Cl0p ransomware. This malicious software is believed to be a variant of another ransomware, CryptoMix, and is typically used by FIN11 to encrypt files on a victim's network after ste

Associated Vulnerabilities

To see the evidence that has resulted in these vulnerability associations, create a free account

ID	Type	Votes	Profile Description
CVE-2023-27350	Unspecified	3	CVE-2023-27350 is a significant software vulnerability discovered in PaperCut NG/MF, a popular print management software. This flaw in software design or implementation allows attackers to bypass authentication and execute code with system privileges, posing a serious threat to both server and inter

Source Document References

Information about the CVE-2023-27351 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
DARKReading	a year ago	Ransomware Victims Surge as Threat Actors Pivot to Zero-Day Exploits
Fortinet	a year ago	Ransomware Roundup - Cl0p \| FortiGuard Labs
CERT-EU	a year ago	Multiple vulnerabilities in PaperCut MF/NG
Securityaffairs	a year ago	Experts released PoC for actively exploited PaperCut flaw
CERT-EU	a year ago	Exploit to hack 100 million users from 70,000 companies using printer software published
CERT-EU	a year ago	PaperCut says hackers are exploiting ‘critical’ security flaws in unpatched servers \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware – National Cyber Security Consulting
CERT-EU	a year ago	PaperCut Flaw Exploited to Hijack Servers, Fix Released
Naked Security	a year ago	PaperCut security vulnerabilities under active attack – vendor urges customers to patch
Malwarebytes	a year ago	Update your PaperCut application servers now: exploits in the wild
CERT-EU	a year ago	Microsoft Confirms PaperCut Servers Used to Deliver LockBit and Cl0p Ransomware
InfoSecurity-magazine	a year ago	Microsoft Blames Clop Affiliate for PaperCut Attacks
Securityaffairs	a year ago	PaperCut exploits used to deliver Cl0p & LockBit ransomware
CERT-EU	a year ago	Recent PaperCut server attacks linked to Cl0p, Lockbit ransomware
CERT-EU	a year ago	Attacks on PaperCut servers tied to Clop, LockBit ransomware groups \| #ransomware \| #cybercrime – National Cyber Security Consulting
CERT-EU	a year ago	Cyber security week in review: April 28, 2023
CERT-EU	a year ago	The Good, the Bad and the Ugly in Cybersecurity – Week 17 \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware – National Cyber Security Consulting
CERT-EU	a year ago	Ransomware Gangs Actively Exploiting PaperCut Server Vulnerabilities
Malwarebytes	a year ago	Ransomware review: May 2023
CERT-EU	a year ago	Ransomware gangs are exploiting 3 vulnerabilities to attack healthcare orgs, feds warn \| #ransomware \| #cybercrime – National Cyber Security Consulting
CERT-EU	a year ago	CVE-2023-27350: Ongoing Exploitation of PaperCut Vulnerability \| Rapid7 Blog