A Cross-Site Request Forgery (CSRF) vulnerability has been identified in PaperCut NG/MF, which, under specific conditions, could potentially enable an attacker to alter security settings or execute arbitrary code. This could be exploited if the target is an admin with a current login session. Exploiting this would typically involve the possibility of deceiving an admin into clicking a specially crafted malicious link, potentially leading to unauthorized changes.
History

Mon, 09 Dec 2024 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Fluid Attacks

Published: 2023-06-20T14:45:14.102Z

Updated: 2024-12-09T18:30:21.694Z

Reserved: 2023-05-05T03:13:21.706Z

Link: CVE-2023-2533

cve-icon Vulnrichment

Updated: 2024-08-02T06:26:09.529Z

cve-icon NVD

Status : Modified

Published: 2023-06-20T15:15:11.560

Modified: 2024-11-21T07:58:47.400

Link: CVE-2023-2533

cve-icon Redhat

No data.