CNNVD-202509-4359 Information
CNNVD ID
CNNVD-202509-4359
Related CVE
- CNNVD Published: 2025-09-29
Description (Chinese)
Vasion Print Virtual Appliance Host是美国Vasion公司的一个打印管理软件。 Vasion Print Virtual Appliance Host 22.0.1049之前版本存在访问控制错误漏洞,该漏洞源于SSH客户端配置不当,可能导致攻击者捕获转发的私钥并在环境中横向移动。
Description (English)
Vasion Print Virgin Application Host is a print management software for Vasion in the United States. Prior to the version of Vasion Print Mutual Application 22.0.1049, there was a bug in access control, which stemmed from the inappropriate configuration of the SSH client, which could lead the assailant to capture the transferred private key and move horizontally in the environment.
Hazard Level
Low
Vulnerability Type
访问控制错误
Affected Vendor
Vasion
Published
2025-09-29
Last Modified
2026-02-24
References
https://pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabilities.html#va-insecure-ssh-config https://www.vulncheck.com/advisories/vasion-print-printerlogic-insecure-ssh-client-config https://help.printerlogic.com/va/Print/Security/Security-Bulletins.htm https://help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm
Patch
https://help.printerlogic.com/va/Print/Security/Security-Bulletins.htm
Share on: