CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3849 matches found

ATTACKERKB•added 2025/09/29 8:41 p.m.•1 views

CVE-2025-34229

Vasion Print formerly PrinterLogic Virtual Appliance Host prior to version 25.1.102 and Application prior to version 25.1.1413 VA/SaaS deployments contain a blind server-side request forgery SSRF vulnerability reachable via the /var/www/app/consolerelease/hp/installApp.php script that can be...

6.9CVSS5.7AI score0.00097EPSS

Exploits1References5

CVE•added 2025/09/29 8:41 p.m.•13 views

CVE-2025-34229

Vulsion: Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to 25.1.102 and Application prior to 25.1.1413 contain a blind SSRF via /var/www/app/console_release/hp/installApp.php. An unauthenticated attacker can cause the system to request internal host addresses (built as http://:...

6.9CVSS6.8AI score0.00097EPSS

Exploits1References4Affected Software2

Vulnrichment•added 2025/09/29 8:40 p.m.•2 views

CVE-2025-34230 Vasion Print (formerly PrinterLogic) Blind SSRF via HP log_off_single_sign_on.php

6.9CVSS6.8AI score0.00097EPSS

Exploits1References4

CVE•added 2025/09/29 8:40 p.m.•13 views

CVE-2025-34230

Vasion Print (PrinterLogic) SSRF (CVE-2025-34230): In VA/VA-SaaS, the Host before 25.1.102 and the Application before 25.1.1413 accept a printer hostname from the printer’s address, store it in $printer_vo->str_host_address, and later request http://:80/DevMgmt/DiscoveryTree.xml via curl witho...

6.9CVSS6.8AI score0.00097EPSS

Exploits1References4Affected Software2

Cvelist•added 2025/09/29 8:40 p.m.•8 views

CVE-2025-34230 Vasion Print (formerly PrinterLogic) Blind SSRF via HP log_off_single_sign_on.php

6.9CVSS0.00097EPSS

Exploits1References4

Cvelist•added 2025/09/29 8:39 p.m.•7 views

CVE-2025-34225 Vasion Print (formerly PrinterLogic) SSRF via console_release Directory

Vasion Print formerly PrinterLogic Virtual Appliance Host prior to version 25.1.102 and Application prior to version 25.1.1413 VA/SaaS deployments contain a server-side request forgery SSRF vulnerability. The consolerelease directory is reachable from the internet without any authentication. Insi...

8.8CVSS0.0029EPSS

Exploits1References4

CVE•added 2025/09/29 8:38 p.m.•12 views

CVE-2025-34233

Vasion Print (formerly PrinterLogic) Virtual Appliance Host before 25.1.102 and Application before 25.1.1413 are affected by a protection mechanism failure in the file_get_contents()/CURL usage. When an administrator configures a printer hostname (or similar callback field), the value is passed u...

8.5CVSS6.5AI score0.00094EPSS

Exploits1References4Affected Software2

CVE•added 2025/09/29 8:34 p.m.•12 views

CVE-2025-34232

Vasion Print (formerly PrinterLogic) Virtual Appliance Host is affected up to version 25.1.102 and the Application up to 25.1.1413 in VA/SaaS deployments. A blind SSRF is reachable via /var/www/app/console_release/lexmark/dellCheck.php; when a printer is registered, the hostname is stored in $pri...

6.9CVSS6.8AI score0.00097EPSS

Exploits1References4Affected Software2

ATTACKERKB•added 2025/09/29 8:34 p.m.•3 views

CVE-2025-34232

6.9CVSS5.7AI score0.00097EPSS

Exploits1References5

Cvelist•added 2025/09/29 8:34 p.m.•9 views

CVE-2025-34232 Vasion Print (formerly PrinterLogic) Blind SSRF via Lexmark dellCheck.php

6.9CVSS0.00097EPSS

Exploits1References4

NVD•added 2025/09/29 1:15 a.m.•3 views

CVE-2025-9903

Out-of-bounds write vulnerabilities in print processing of Generic Plus PCL6 Printer Driver / Generic Plus UFR II Printer Driver / Generic Plus LIPS4 Printer Driver / Generic Plus LIPSLX Printer Driver / Generic Plus PS Printer Driver / UFRII LT Printer Driver / CARPS2 Printer Driver / Generic FA...

5.9CVSS0.00053EPSS

Exploits0References4

CVE•added 2025/09/29 12:47 a.m.•10 views

CVE-2025-7698

CVE-2025-7698 relates to out-of-bounds read vulnerabilities in Canon Generic Plus printer drivers (PCL6/UFR II/LIPS4/LIPSLX/PS and related Classic/Generic FAX drivers) used in Canon production and office printers. The root cause is an out-of-bounds read in the print processing path. Impact, as de...

5.9CVSS6.2AI score0.00057EPSS

Exploits0References4

Cvelist•added 2025/09/29 12:47 a.m.•9 views

CVE-2025-7698

Out-of-bounds read vulnerabilities in print processing of Generic Plus PCL6 Printer Driver / Generic Plus UFR II Printer Driver / Generic Plus LIPS4 Printer Driver / Generic Plus LIPSLX Printer Driver / Generic Plus PS Printer Driver / UFRII LT Printer Driver / CARPS2 Printer Driver / Generic FAX...

5.9CVSS0.00057EPSS

Exploits0References4

Vulnrichment•added 2025/09/29 12:47 a.m.•1 views

CVE-2025-7698

5.9CVSS6.2AI score0.00057EPSS

Exploits0References4

ATTACKERKB•added 2025/09/29 12:46 a.m.•1 views

CVE-2025-9904

Unallocated memory access vulnerability in print processing of Generic Plus PCL6 Printer Driver / Generic Plus UFR II Printer Driver / Generic Plus LIPS4 Printer Driver / Generic Plus LIPSLX Printer Driver / Generic Plus PS Printer Driver / UFRII LT Printer Driver / CARPS2 Printer Driver / Generi...

6.9CVSS6.2AI score0.00035EPSS

Exploits0References5Affected Software13

Vulnrichment•added 2025/09/29 12:46 a.m.•1 views

CVE-2025-9904

6.9CVSS6.2AI score0.00035EPSS

Exploits0References4

CVE•added 2025/09/29 12:46 a.m.•11 views

CVE-2025-9904

Summary: CVE-2025-9904 is an unallocated memory access vulnerability in print processing for Canon Generic Plus printer drivers (PCL6, UFR II, LIPS4, LIPSLX, PS) and related drivers. The issue stems from unallocated memory access in the driver’s print pipeline, with network-based attack potential...

6.9CVSS6.2AI score0.00035EPSS

Exploits0References4

Cvelist•added 2025/09/29 12:46 a.m.•7 views

CVE-2025-9904

6.9CVSS0.00035EPSS

Exploits0References4

Cvelist•added 2025/09/29 12:44 a.m.•8 views

CVE-2025-9903

5.9CVSS0.00053EPSS

Exploits0References4

ATTACKERKB•added 2025/09/29 12:44 a.m.•0 views

CVE-2025-9903