May 11, 2023

Elevated Concerns Emerge Around PaperCut Vulnerability

May 11, 2023

What we know so far

This joint cybersecurity advisory by the FBI and CISA addresses the active exploitation of CVE-2023-27350, a vulnerability found in specific versions of PaperCut NG and PaperCut MF software. The vulnerability allows unauthorized actors to remotely execute malicious code without credentials. PaperCut released a patch for this vulnerability in March 2023. The FBI has received information indicating that malicious actors have been exploiting CVE-2023-27350 since mid-April 2023, with ongoing attacks. In May 2023, the Bl00dy Ransomware Gang attempted to exploit vulnerable PaperCut servers in the Education Facilities Subsector. The advisory provides methods for detecting exploitation of CVE-2023-27350 and indicators of compromise associated with the Bl00dy Ransomware Gang.

Arrow Right

Schedule a test

Subscribe to advisory alerts

Be immediately notified of new advisories and associated security tests

More advisories