
<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">

<head>

<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">

<meta name="Generator" content="Microsoft Word 15 (filtered medium)">

<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}

o\:* {behavior:url(#default#VML);}

w\:* {behavior:url(#default#VML);}

.shape {behavior:url(#default#VML);}

</style><![endif]--><style><!--

/* Font Definitions */

@font-face

        {font-family:"Cambria Math";

        panose-1:2 4 5 3 5 4 6 3 2 4;}

@font-face

        {font-family:Calibri;

        panose-1:2 15 5 2 2 2 4 3 2 4;}

@font-face

        {font-family:"Century Gothic";

        panose-1:2 11 5 2 2 2 2 2 2 4;}

/* Style Definitions */

p.MsoNormal, li.MsoNormal, div.MsoNormal

        {margin:0in;

        font-size:11.0pt;

        font-family:"Calibri",sans-serif;}

a:link, span.MsoHyperlink

        {mso-style-priority:99;

        color:#0563C1;

        text-decoration:underline;}

span.html-tag

        {mso-style-name:html-tag;}

span.EmailStyle21

        {mso-style-type:personal-compose;

        font-family:"Calibri",sans-serif;

        color:windowtext;}

.MsoChpDefault

        {mso-style-type:export-only;

        font-size:10.0pt;}

@page WordSection1

        {size:8.5in 11.0in;

        margin:1.0in 1.0in 1.0in 1.0in;}

div.WordSection1

        {page:WordSection1;}

--></style><!--[if gte mso 9]><xml>

<o:shapedefaults v:ext="edit" spidmax="1026" />

</xml><![endif]--><!--[if gte mso 9]><xml>

<o:shapelayout v:ext="edit">

<o:idmap v:ext="edit" data="1" />

</o:shapelayout></xml><![endif]-->

</head>

<body lang="EN-US" link="#0563C1" vlink="#954F72" style="word-wrap:break-word">

<div class="WordSection1">

<p class="MsoNormal"><o:p> </o:p></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><o:p> </o:p></span></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><img width="600" height="100" style="width:6.25in;height:1.0416in" id="Picture_x0020_1" src="cid:image002.png@01D97902.94148AD0" alt="A picture containing logo


Description automatically generated"></span><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><o:p></o:p></span></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><o:p> </o:p></span></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif">Greetings SEO Members,<o:p></o:p></span></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><o:p> </o:p></span></p>

<p class="MsoNormal"><b><span style="font-size:14.0pt;font-family:"Century Gothic",sans-serif">Vulnerability Summary<o:p></o:p></span></b></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif">The PaperCut Print Management software contains a vulnerability (<a href="https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-27350">CVE-2023-27350</a>) that could

 allow attackers to remotely execute code with administrative privileges, thus making it possible to deploy the Clop ransomware and encrypt files on the compromised systems.  This vulnerability was discovered in March, 2023 and promptly reported to PaperCut

 who disclosed the vulnerability along with a patch on April 19th.  PaperCut MF/NG is used by over 70,000 organizations, including some of our libraries.  One of our libraries became aware of this vulnerability as their receipt printer printed the following

 ransomware statement:<o:p></o:p></span></p>

<p class="MsoNormal"><img border="0" width="320" height="257" style="width:3.3333in;height:2.677in" id="Picture_x0020_3" src="cid:image003.png@01D97902.94148AD0"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><o:p></o:p></span></p>

<p class="MsoNormal"><b><span style="font-size:14.0pt;font-family:"Century Gothic",sans-serif;background:yellow;mso-highlight:yellow">Recommendation<o:p></o:p></span></b></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif;background:yellow;mso-highlight:yellow">PaperCut highly recommends ALL organizations upgrading to the fixed versions detailed below

<b>IMMEDIATELY</b>.</span><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><o:p></o:p></span></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><o:p> </o:p></span></p>

<p class="MsoNormal"><b><span style="font-size:14.0pt;font-family:"Century Gothic",sans-serif">Affected Versions<o:p></o:p></span></b></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif">PaperCut MF/NG version

<b>22.0.5 (Build 63914)</b> – <i>prior versions may also be affected<o:p></o:p></i></span></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><o:p> </o:p></span></p>

<p class="MsoNormal"><b><span style="font-size:14.0pt;font-family:"Century Gothic",sans-serif">Fixed Versions<o:p></o:p></span></b></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif">PaperCut MF/NG versions

<b>20.1.7</b>, <b>21.2.11</b>, and <b>22.0.9</b><o:p></o:p></span></p>

<p class="MsoNormal"><span style="font-size:16.0pt;font-family:"Century Gothic",sans-serif"><o:p> </o:p></span></p>

<p class="MsoNormal"><b><span style="font-size:14.0pt;font-family:"Century Gothic",sans-serif">References to vendor announcements, solutions, and links provided by SEO<o:p></o:p></span></b></p>

<p class="MsoNormal"><b><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif">Vendor Advisory:

</span></b><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif;color:#4472C4"><a href="https://www.papercut.com/kb/Main/PO-1216-and-PO-1219"><span style="color:#4472C4">PaperCut MF/NG Vulnerability Bulletin | URGENT & Solution Details</span></a></span><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><o:p></o:p></span></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><a href="https://nvd.nist.gov/vuln/detail/CVE-2023-27350">National Vulnerability Database – CVE-2023-27350</a><o:p></o:p></span></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><a href="https://nvd.nist.gov/vuln/detail/CVE-2023-27351">National Vulnerability Database – CVE-2023-27351</a><br>

<br>

<o:p></o:p></span></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><a href="https://servingeveryohioan.org/security/">SEO Security Awareness Page</a><o:p></o:p></span></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><a href="https://support.servingeveryohioan.org/support/solutions/folders/69000644132">SEO Ransomware and Cyber Incident Articles</a><o:p></o:p></span></p>

<p class="MsoNormal"><o:p> </o:p></p>

<p class="MsoNormal"><i><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif">Report Security Vulnerabilities to SEO like these here:

<span class="html-tag"><a href="mailto:support@servingeveryohioan.org?subject=Security%20Event%20Notification">Report Security Event</a></span><o:p></o:p></span></i></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><o:p> </o:p></span></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif">Please let us know if you have any questions regarding this vulnerability.<o:p></o:p></span></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><o:p> </o:p></span></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif">Best Regards,<o:p></o:p></span></p>

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><a href="https://servingeveryohioan.org/meet-our-team/">Your SEO Team</a><o:p></o:p></span></p>

<p class="MsoNormal"><o:p> </o:p></p>

<div>

<table class="MsoNormalTable" border="0" cellspacing="0" cellpadding="0" width="318" style="width:238.25pt;border-collapse:collapse">

<tbody>

<tr style="height:60.7pt">

<td width="97" valign="top" style="width:72.8pt;border:none;border-right:solid windowtext 1.0pt;padding:0in 5.4pt 0in 5.4pt;height:60.7pt">

<p class="MsoNormal"><span style="font-size:12.0pt;font-family:"Century Gothic",sans-serif"><img border="0" width="95" height="97" style="width:.9895in;height:1.0104in" id="Picture_x0020_2" src="cid:image004.png@01D97902.94148AD0"></span><o:p></o:p></p>

</td>

<td width="221" valign="top" style="width:165.45pt;padding:0in 5.4pt 0in 5.4pt;height:60.7pt">

<p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Century Gothic",sans-serif;color:#2F5496">Michael Postlethwait</span></b><o:p></o:p></p>

<p class="MsoNormal"><span style="font-size:9.0pt;font-family:"Century Gothic",sans-serif;color:black;mso-fareast-language:EN-ZW">Application and Integrations Specialist<o:p></o:p></span></p>

<p class="MsoNormal"><span style="font-size:8.0pt;font-family:"Century Gothic",sans-serif"> </span><o:p></o:p></p>

<p class="MsoNormal"><b><span style="font-size:9.0pt;font-family:"Century Gothic",sans-serif;color:#2F5496">State Library of Ohio

</span></b><o:p></o:p></p>

<p class="MsoNormal"><span style="font-size:8.0pt;font-family:"Century Gothic",sans-serif;color:#2F5496">SEO Service Center</span><o:p></o:p></p>

<p class="MsoNormal"><span style="font-size:8.0pt;font-family:"Century Gothic",sans-serif">40780 Marietta Rd.</span><o:p></o:p></p>

<p class="MsoNormal"><span style="font-size:8.0pt;font-family:"Century Gothic",sans-serif">P.O. Box 185</span><o:p></o:p></p>

<p class="MsoNormal"><span style="font-size:8.0pt;font-family:"Century Gothic",sans-serif">Caldwell, OH 43724</span><o:p></o:p></p>

<p class="MsoNormal"><span lang="FR" style="font-size:8.0pt;font-family:"Century Gothic",sans-serif;color:#2F5496"> </span><o:p></o:p></p>

<p class="MsoNormal"><span lang="FR" style="font-size:8.0pt;font-family:"Century Gothic",sans-serif;color:#2F5496">Phone: 1-877-552-4262 x225</span><o:p></o:p></p>

<p class="MsoNormal" style="margin-bottom:12.0pt"><span lang="FR" style="font-size:8.0pt;font-family:"Century Gothic",sans-serif;color:#2F5496">Email:<a href="mailto:mpost@library.ohio.gov">mpost@library.ohio.gov</a></span><span style="font-size:9.0pt;font-family:"Century Gothic",sans-serif;color:#2F5496"><o:p></o:p></span></p>

<p class="MsoNormal"><span style="font-size:9.0pt;font-family:"Century Gothic",sans-serif;color:#2F5496"><a href="https://servingeveryohioan.org/">https://servingeveryohioan.org/</a></span><span style="font-size:8.0pt;font-family:"Century Gothic",sans-serif"> </span><o:p></o:p></p>

</td>

</tr>

</tbody>

</table>

<p class="MsoNormal"><o:p> </o:p></p>

</div>

<p class="MsoNormal"><o:p> </o:p></p>

</div>

</body>

</html>