CNNVD-202509-3081 Information

Sep 19, 2025 cve

CNNVD ID

CNNVD-202509-3081

CVE-2025-34198

  • CNNVD Published: 2025-09-19

Description (Chinese)

Vasion Print Virtual Appliance Host和Vasion Print Application都是美国Vasion公司的产品。Vasion Print Virtual Appliance Host是一个打印管理软件。Vasion Print Application是一个打印机管理应用程序。 Vasion Print Virtual Appliance Host 22.0.951之前版本和Vasion Print Application 20.0.2368之前版本存在安全漏洞,该漏洞源于使用共享的硬编码SSH主机私钥,可能导致中间人攻击或冒充攻击。

Description (English)

Vasion Print Virgin Application Host and Vasion Prince Application are products of the United States company Vasion. Vasion Prit Virgin Application Host is a print management software. Vasion Prince Application is a printer management application. There is a security loophole in the previous versions of Vasion Print Voluntary Application 22.0951 and Vasion Prince Application 20.2368, which stems from the use of a shared hard-coded SSH mainframe private key, which may lead to an attack by an intermediary or an attempted attack.

Hazard Level

Low

Vulnerability Type

其他

Affected Vendor

Vela

Published

2025-09-19

Last Modified

2026-02-24

References

https://help.printerlogic.com/va/Print/Security/Security-Bulletins.htm https://help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm https://www.vulncheck.com/advisories/vasion-print-printerlogic-shared-hardcoded-ssh-host-private-keys-in-appliance-image https://pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabilities.html#va-hardcoded-ssh-keys https://access.redhat.com/security/cve/cve-2025-34198

Patch

https://vasion.com/

Share on: