49 matches found
CVE-2025-27641
CVE-2025-27641 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.951 and Application 20.0.2368, with an underlying issue described as unauthenticated access to APIs used for Single Sign-On (V-2024-009). The CVSSv3.1 vector in the initial record indicates a network-...
CVE-2025-27643
CVE-2025-27643 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.933 and Application 20.0.2368. Root cause: a hardcoded AWS API key (V-2024-006) exposed in the product. Impact: potential unauthorized access to AWS credentials, with CVSS 3.1 score of 9.8 (network, l...
CVE-2025-27672
CVE-2025-27672 affects Vasion Print (formerly PrinterLogic) in the Virtual Appliance Host prior to 22.0.843 and Application 20.0.1923. The vulnerability is an OAuth security bypass (OVE-20230524-0016) that, per the NVD metrics, has a high impact on confidentiality, integrity, and availability wit...
CVE-2025-27637
CVE-2025-27637 affects Vasion Print (formerly PrinterLogic) when running the Virtual Appliance Host prior to 22.0.1002 and Application prior to 20.0.2614. The vulnerability is Cross-Site Scripting (XSS). Public details show an XSS flaw that could be exploitable remotely via network access with us...
CVE-2025-27642
CVE-2025-27642 concerns Vasion Print (formerly PrinterLogic) prior to the Virtual Appliance Host 22.0.933 / Application 20.0.2368. The documented issue is an unauthenticated driver package editing vulnerability, allowing modification without authentication. Several connected sources corroborate t...
CVE-2025-27663
CVE-2025-27663 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.843 and Application 20.0.1923, due to weak password encryption/encoding (OVE-20230524-0007). The vulnerability is associated with a 3.1 CVSS v3.1 base score of 9.8 (NETWORK, NO authentication, no user...
CVE-2025-27639
Vasion Print (formerly PrinterLogic) is affected by CVE-2025-27639. The issue exists in the Virtual Appliance Host prior to 22.0.1002 Application 20.0.2614 and is described as a privilege escalation (V-2024-015). The CVSS vector indicates Network access with low attack complexity and the ability ...
CVE-2025-27644
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.933 and Application 20.0.2368 allows local privilege escalation. Affected versions should be updated to Virtual Appliance Host 22.0.933 / Application 20.0.2368 or later to resolve the issue; details on root cause are not full...
CVE-2025-27649
CVE-2025-27649 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.893 and Application 20.0.2140, due to Incorrect Access Control (PHP V-2023-016). CVSS 3.1 indicates Critical impact (C/H, I/H, A/H) with network attack, no user interaction required. Exploitation deta...
CVE-2025-27670
CVE-2025-27670 affects Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 and Application 20.0.1923. Root cause: insufficient signature validation (OVE-20230524-0014). CVSS 3.1: Network, Low attack complexity, Privileges None, User Interaction None, with Confidentiality/I...
CVE-2025-27674
CVE-2025-27674 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.843 and Application 20.0.1923, with a root cause described as a hardcoded IdP key (V-2023-006). This存在 vulnerability is associated with authentication-related weakness in the identity provider integra...
CVE-2025-27678
CVE-2025-27678 affects Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843; Application 20.0.1923. Description states the issue allows Client Remote Code Execution (RCE) and is linked to V-2023-001. No additional exploit details, impact scope, affected environments, or rem...
CVE-2025-27653
Vasion Print (formerly PrinterLogic) exposes a preauthenticated cross-site scripting (XSS) vulnerability in the badge registration feature for versions prior to Virtual Appliance Host 22.0.862 and Application 20.0.2014 (CVE-2025-27653). The available sources describe the issue as a preauth XSS, b...
CVE-2025-27657
CVE-2025-27657 affects Vasion Print (formerly PrinterLogic) SaaS/Virtual Appliance Host prior to version 22.0.843 and Application 20.0.1923. The connected documents consistently describe it as allowing Remote Code Execution. The root cause is not elaborated beyond the RCE phrasing in multiple sou...
CVE-2025-27658
CVE-2025-27658 affects Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 and Application 20.0.1923, where an authentication bypass (OVE-20230524-0001) is reported. The CVSS v3.1 base score is 9.8 (CRITICAL) with Network attack vector, no privileges or user interaction re...
CVE-2025-27676
Vulnerability CVE-2025-27676 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.843 and Application 20.0.1923, enabling Cross-Site Scripting in Reports (V-2023-002). The CVSS records an in-scope network-exposed, low- to medium-impact issue with user interaction requ...
CVE-2025-27645
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.933 and Application 20.0.2368 allows insecure extension installation by trusting HTTP permission methods on the server side. This vulnerability, CVE-2025-27645, is reported with a CVSS v3.1 base score of 9.8 (NETWORK, HIGH im...
CVE-2025-27675
Vusion Print (formerly PrinterLogic) is affected by CVE-2025-27675: prior to Virtual Appliance Host 22.0.843 and Application 20.0.1923, the product uses a vulnerable OpenID implementation (V-2023-004). The NVD entry assigns CVSS v3.1 score 9.8 (Network, Low complexity, No privileges, User interac...
CVE-2025-27683
CVE-2025-27683 : Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 1.0.735 Application 20.0.1330 allows a driver upload of a dangerous file type, via Unrestricted Upload of Files with Dangerous Type (V-2022-006). The vulnerability is documented across multiple sources (NVD/NVD-...
CVE-2025-27638
Vas ion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.1002 and Application 20.0.2614 contains a hardcoded password vulnerability (V-2024-013). Multiple sources (NVD/NVD-based entries, Red Hat CVE page, PT-Security advisory, and vendor/CVE listings) confirm CVE-2025-27638. CVS...
CVE-2025-27659
CVE-2025-27659 is a confirmed SQL injection flaw in Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.843 and Application 20.0.1923. The entry lists a CVSS v3.1 base score of 9.8 (CRITICAL) with network attack vector, no user interaction, and no privileges required, affect...
CVE-2025-27665
CVE-2025-27665 affects Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 and Application 20.0.1923. The root cause is insufficient antivirus protection, enabling drivers to contain known malicious code (OVE-20230524-0009). The vulnerability is rated CVSSv3.1 base 9.8 (CR...
CVE-2025-27679
Vulnerability: CVE-2025-27679 affects Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843, Application 20.0.1923. The issue is a Cross-Site Scripting (XSS) in the Badge Registration feature (V-2023-005). Affected product/version: Vasion Print/PrinterLogic prior to the stat...
CVE-2025-27682
CVE-2025-27682 affects Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.735, Application 20.0.1330. Root cause: insecure log permissions. CVSSv3.1 base score 9.8 (CRITICAL); attack vector NETWORK, no user interaction, privileges required NONE, confidentiality/ integrity/ ava...
CVE-2025-27646
CVE-2025-27646 affects Version: Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.913 and Application 20.0.2253. Root cause described as an access-control issue that allows an Edit User Account Exposure, implying potential disclosure of user account information. CVSS v3.1 ...
CVE-2025-27652
CVE-2025-27652 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.862 and Application 20.0.2014. The vulnerability is Server-Side Request Forgery (SSRF) stemming from the rfIDEAS V-2023-015 component. Public references describe the issue as part of a broader set of ...
CVE-2025-27656
CVE-2025-27656 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.862 and Application 20.0.2014. The root cause is plaintext passwords stored in the process list. The vulnerability is rated CVSS v3.1 with a base score of 9.8 (CRITICAL), high impact on confidentialit...
CVE-2025-27662
CVE-2025-27662 affects Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 and Application 20.0.1923, where passwords can be exposed in URLs (OVE-20230524-0005). Root cause: insecure handling of credentials in URL. The CVSSv3.1 baseline is 9.8 (Network, Single, No user int...
CVE-2025-27673
CVE-2025-27673 affects Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 and Application 20.0.1923, where a cookie is returned in the response body (OVE-20230524-0017). The CVSS 3.1 vector is CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N, base score 9.1 (CRITICAL). Exploi...
CVE-2025-27677
CVE-2025-27677 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.843 and Application 20.0.1923. The issue allows symbolic links for unprivileged file interaction. Multiple sources (NVD, Red Hat advisory, CNNVD) corroborate the vulnerability and describe the affecte...
CVE-2025-27681
CVE-2025-27681 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 1.0.735 Application 20.0.1330. The root cause is described as mishandling of Client Inter-process Security V-2022-004, leading to a critical impact across confidentiality, integrity, and availability. CVSS...
CVE-2025-27647
CVE-2025-27647 affects Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.913 and Application 20.0.2253, with a high impact vulnerability described as allowing the addition of partial admin users without authentication. The CVSSv3.1 base score is 9.8 (CRITICAL) with NETWORK a...
CVE-2025-27671
CVE-2025-27671 affects Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 and Application 20.0.1923, with a device impersonation issue (OVE-20230524-0015). The NVD entry lists a CVSS v3.1 base score of 9.8 (CRITICAL) with NETWORK attack vector, LOW attack complexity, and ...
CVE-2025-27655
Vulnerability CVE-2025-27655 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.862 and Application 20.0.2014, where a Server-Side Request Forgery (SSRF) in the CPA v1 component is reported. The issue is caused by improper handling in CPA v1 that enables SSRF; explo...
CVE-2025-27667
Vulnerability summary: Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 and Application 20.0.1923 is exposed to an Administrative User Email Enumeration issue (OVE-20230524-0011). Affected product/version: Vasion Print prior to 22.0.843 / 20.0.1923. Root cause and techn...
CVE-2025-27680
Vasion Print (PrinterLogic) before Virtual Appliance Host 1.0.750 Application 20.0.1442 is affected by CVE-2025-27680, described as an insecure firmware image with insufficient verification of data authenticity (V-2024-004). The issue is documented with a CRITICAL CVSS v3.1 score (9.1) impacting ...
CVE-2025-27648
Vulnerability CVE-2025-27648 affects Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.913 and Application 20.0.2253, enabling cross-tenant password exposure. The CVSSv3.1 base score is 9.8 (CRITICAL) with NETWORK attack vector, no user interaction, and high impact to confid...
CVE-2025-27654
CVE-2025-27654 affects Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.862, Application 20.0.2014, with Cross Site Scripting (XSS) identified. The CVSSv3.1 base score is 6.1 (MEDIUM) with network attack vector, no privileges required, user interaction required, and changed...
CVE-2025-27684
Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 1.0.735, Application 20.0.1330, contains a debug bundle with sensitive data. CVSSv3.1 base score 7.5 (HIGH); attack vector NETWORK, complexity LOW, privileges NONE, user interaction NONE. Affected product/component: Vasion Print...
CVE-2025-27640
Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.1002 and Application 20.0.2614 contains a SQL Injection vulnerability (CVE-2025-27640). Affected components are the PrinterLogic/Vision Print stack on Virtual Appliance Host versions before 22.0.1002 and Application 20.0.26...
CVE-2025-27651
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.862 and Application 20.0.2014 are affected by CVE-2025-27651 due to a Server-Side Request Forgery (SSRF) in the Elatec V-2023-014 component. The issue is documented with a CVSS v3.1 vector of AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A...
CVE-2025-27666
CVE-2025-27666 affects Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 and Application 20.0.1923, due to insufficient authorization checks (OVE-20230524-0010). The CVSS v3.1 base score is 9.8 (CRITICAL) with network attack vector, no privileges required, and no user in...
CVE-2025-27650
CVE-2025-27650 concerns Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.862 and Application 20.0.2014, where private keys are present in the Docker overlay, exposing sensitive material. The CVSS 3.1 base metrics indicate high impact on confidentiality, integrity, and ava...
CVE-2025-27664
The CVE-2025-27664 entry concerns Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 and Application 20.0.1923, with a root cause of insufficient CSRF protection. The associated CVSS v3.1 metrics indicate a HIGH impact: network access, no privileges required, with user in...
CVE-2025-27661
CVE-2025-27661 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.843 / Application 20.0.1923. The issue is a session fixation vulnerability (OVE-20230524-0004). Affected component: the web/app layer serving printer management; root cause details are not further ela...
CVE-2025-27668
CVE-2025-27668 affects Vasion Print (formerly PrinterLogic) SaaS-based cloud service prior to Virtual Appliance Host 22.0.843 and Application 20.0.1923, where an arbitrary content inclusion vulnerability can be triggered via an iframe (OVERVIEW-20230524-0012). The CVSS v3.1 base score is 9.8 (CRI...
CVE-2025-27669
Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843, Application 20.0.1923, is affected by CVE-2025-27669 which allows Remote Network Scanning (XSPA) and leads to a Denial of Service. The public description and Red Hat/CNNVD entries confirm affected versions and the nature...
CVE-2025-27685
Vulnerability CVE-2025-27685 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 1.0.735, Application 20.0.1330. The issue arises from a configuration file that contains a CA certificate and a private key (V-2022-001). Public references in the connected sources corroborat...
CVE-2025-27660
Vulnerability CVE-2025-27660 affects Vasion Print (formerly PrinterLogic) prior to Virtual Appliance Host 22.0.843 and Application 20.0.1923, allowing Cross Site Scripting (XSS) via OVE-20230524-0003. The connected documents confirm the affected product and the XSS outcome but do not provide expl...