CVE-2023-3486 Information

Description

An authentication bypass exists in PaperCut NG versions 22.0.12 and prior that could allow a remote unauthenticated attacker to upload arbitrary files to the PaperCut NG host’s file storage. This could exhaust system resources and prevent the service from operating as expected.

Reference

https://www.tenable.com/security/research/tra-2023-23