Vasion

Virtual Appliance Host

43 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2025-34211

Exploit
  • EPSS 0.03%
  • Veröffentlicht 29.09.2025 21:15:34
  • Zuletzt bearbeitet 03.10.2025 16:16:31

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 22.0.1049 and Application prior to version 20.0.2786 (VA and SaaS deployments) contain a private SSL key and matching public certificate stored in cleartext. The key belongs...

9.8

CVE-2025-34212

Exploit
  • EPSS 0.21%
  • Veröffentlicht 29.09.2025 21:15:34
  • Zuletzt bearbeitet 09.10.2025 18:03:58

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 22.0.843 and Application prior to version 20.0.1923 (VA/SaaS deployments) possess CI/CD weaknesses: the build pulls an unverified third-party image, downloads the VirtualBox...

7.2

CVE-2025-34209

Exploit
  • EPSS 0.08%
  • Veröffentlicht 29.09.2025 21:15:34
  • Zuletzt bearbeitet 03.10.2025 16:18:25

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to 22.0.862 and Application prior to 20.0.2014 (VA and SaaS deployments) contain Docker images with the private GPG key and passphrase for the account *no‑reply+virtual‑appliance@print...

9.8

CVE-2025-34207

  • EPSS 0.07%
  • Veröffentlicht 29.09.2025 21:15:34
  • Zuletzt bearbeitet 03.10.2025 16:23:41

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to 22.0.1049 and Application prior to 20.0.2786 (VA and SaaS deployments) configure the SSH client within Docker instances with the following options: `UserKnownHostsFile=/dev/null`, `...

9.8

CVE-2025-34196

Exploit
  • EPSS 0.04%
  • Veröffentlicht 29.09.2025 19:15:34
  • Zuletzt bearbeitet 16.10.2025 16:27:21

Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 25.1.102 and Application prior to 25.1.1413 (Windows client deployments) contain a hardcoded private key for the PrinterLogic Certificate Authority (CA) and a hardcoded pas...

8.4

CVE-2025-34191

Exploit
  • EPSS 0.02%
  • Veröffentlicht 19.09.2025 18:51:42
  • Zuletzt bearbeitet 02.10.2025 22:15:36

Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 22.0.843 and Application prior to 20.0.1923 (macOS/Linux client deployments) contain an arbitrary file write vulnerability via the response file handling. When tasks produc...

7.8

CVE-2025-34190

Exploit
  • EPSS 0.06%
  • Veröffentlicht 19.09.2025 18:51:12
  • Zuletzt bearbeitet 29.09.2025 20:15:31

Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 25.1.102 and Application versions prior to 25.1.1413 (macOS/Linux client deployments) are vulnerable to an authentication bypass in PrinterInstallerClientService. The servi...

9.8

CVE-2025-34205

Exploit
  • EPSS 4.04%
  • Veröffentlicht 19.09.2025 18:50:38
  • Zuletzt bearbeitet 02.10.2025 22:15:37

Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 22.0.843 and Application prior to 20.0.1923 (VA and SaaS deployments) contains dangerous PHP dead code present in multiple Docker-hosted PHP instances. A script named /var/...

8.8

CVE-2025-34202

Exploit
  • EPSS 0.73%
  • Veröffentlicht 19.09.2025 18:50:09
  • Zuletzt bearbeitet 02.10.2025 22:15:37

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to 25.2.169 and Application prior to 25.2.1518 (VA and SaaS deployments) expose Docker internal networks in a way that allows an attacker on the same external L2 segment — or an attack...

7.8

CVE-2025-34189

Exploit
  • EPSS 0.02%
  • Veröffentlicht 19.09.2025 18:49:29
  • Zuletzt bearbeitet 02.10.2025 22:15:36

Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 1.0.735 and Application versions prior to 20.0.1330 (macOS/Linux client deployments) contain a vulnerability in the local inter-process communication (IPC) mechanism. The s...