CNNVD-202509-4358 Information
CNNVD ID
CNNVD-202509-4358
Related CVE
- CNNVD Published: 2025-09-29
Description (Chinese)
Vasion Print Virtual Appliance Host是美国Vasion公司的一个打印管理软件。 Vasion Print Virtual Appliance Host 22.0.862之前版本存在安全漏洞,该漏洞源于Docker镜像中包含私钥和硬编码密码,可能导致攻击者解密文件和签名恶意固件更新包。
Description (English)
Vasion Print Virgin Application Host is a print management software for Vasion in the United States. There was a security loophole in the previous version of Vasion Print Mutual Application 22.0.862, which stemmed from the Docker mirror containing private keys and hard coded passwords, which could lead to the decryption of documents by the assailant and the signature of a malicious fixture update package.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Vasion
Published
2025-09-29
Last Modified
2026-02-24
References
https://www.vulncheck.com/advisories/vasion-print-printerlogic-hardcoded-gpg-private-key https://help.printerlogic.com/va/Print/Security/Security-Bulletins.htm https://help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm https://pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabilities.html#va-private-gpg-key
Patch
https://help.printerlogic.com/va/Print/Security/Security-Bulletins.htm
Share on: