SB2023072557 - Multiple vulnerabilities in PaperCut NG

Description

This security bulletin contains information about 3 secuirty vulnerabilities.

1) Path traversal (CVE-ID: CVE-2023-39143)

The vulnerability allows a remote attacker to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences in the applications API interface. A remote non-authenticated attacker can send a specially crafted HTTP request and read or write arbitrary files on the system.

2) Resource exhaustion (CVE-ID: CVE-2023-3486)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to application does not properly control consumption of internal resources. A remote attacker can trigger resource exhaustion by exhausting all available disk space and perform a denial of service (DoS) attack.

3) Improper initialization (CVE-ID: CVE-2022-21724)

The vulnerability allows a remote attacker to escalate privileges on the system.

The vulnerability exists due to improper initialization in pgjdbc driver when handling attacker-controlled URL in connection properties as the driver does not verify if the class implements the expected interface before instantiating the class. A remote attacker can pass specially crafted URL to the affected application and execute arbitrary code in the system.

Remediation

Install update from vendor's website.

References

• https://www.papercut.com/kb/Main/SecurityBulletinJuly2023/
• https://www.horizon3.ai/cve-2023-39143-papercut-path-traversal-file-upload-rce-vulnerability/
• https://www.tenable.com/security/research/tra-2023-23