CNNVD-202509-4347 Information

Sep 29, 2025 cve

CNNVD ID

CNNVD-202509-4347

CVE-2025-34225

  • CNNVD Published: 2025-09-29

Description (Chinese)

Vasion Print Virtual Appliance Host是美国Vasion公司的一个打印管理软件。 Vasion Print Virtual Appliance Host 25.1.102之前版本存在安全漏洞,该漏洞源于console_release目录中的PHP脚本未正确验证用户输入,可能导致服务端请求伪造攻击。

Description (English)

Vasion Print Virgin Application Host is a print management software for Vasion in the United States. The previous version of Vasion Print Universal Application 25.1.102 had a security loophole, which originated from the incorrect verification of PHP scripts in the Console release directory, which could lead to a request from the service for a false attack.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Vasion

Published

2025-09-29

Last Modified

2026-02-24

References

https://help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm https://help.printerlogic.com/va/Print/Security/Security-Bulletins.htm https://pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabilities.html#va-ssrf-03 https://www.vulncheck.com/advisories/vasion-print-printerlogic-ssrf-via-console-release-directory

Patch

https://help.printerlogic.com/va/Print/Security/Security-Bulletins.htm

Share on: