CVE-2023-27351 — PaperCut NG/MF: PaperCut NG/MF Improper Authentication Vulnerability

April 20, 2026 15:00 /HIGH

Written by SCW Vulnerability Desk Vulnerability Intelligence

CISA KEV vulnerabilitycvecisa-kevactively-exploited

CVE-2023-27351 — PaperCut NG/MF: PaperCut NG/MF Improper Authentication Vulnerability

Image via

CVE-2023-27351 — PaperCut NG/MF contains an improper authentication vulnerability that could allow remote attackers to bypass authentication on affected installations via the SecurityRequestFilter class.

https://www.papercut.com/kb/Main/PO-1216-and-PO-1219

What This Means For You

CISA has confirmed active exploitation — immediate patching required.
Added to CISA KEV catalog — federal agencies must remediate by 2026-05-04.

Related ATT&CK Techniques

T1190 Exploit Public-Facing Application Initial Access T1078.004 Cloud Accounts Initial Access

Indicators of Compromise

ID	Type	Indicator
CVE-2023-27351	Vulnerability	CVE-2023-27351

Written by SCW Vulnerability Desk

🔎

Turn this CVE into SIEM detection coverage Generate detection rules for Splunk, Sentinel, QRadar & Elastic — straight from this vulnerability. Use /detect in the Intel Bot.

Open Intel Bot →

Source & Attribution

Source Platform	CISA
Channel	CISA KEV
Channel ID	cisa-kev
Message ID	202327351
Published	April 20, 2026 at 15:00 UTC
Original Link	https://www.papercut.com/kb/Main/PO-1216-and-PO-1219

This content was curated and summarized by Shimi's Cyber World for informational purposes. It is not copied or republished in full. All intellectual property rights remain with the original author and source.

Believe this infringes your rights? Submit a takedown request.

What This Means For You

Related ATT&CK Techniques

Indicators of Compromise

Related Posts

CVE-2026-5721 — Cross-Site Scripting (XSS)

CVE-2026-6729 — HKUDS OpenHarness prior to PR #159 remediation contains a

CVE-2026-4852 — Cross-Site Scripting (XSS)