CVE-2025-34235

moderate-risk
Published 2025-09-29

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.1.102 and Application prior to version 25.1.1413 (Windows client deployments) contain a registry key that can be enabled by administrators, causing the client to skip SSL/TLS certificate validation. An attacker who can intercept HTTPS traffic can then inject malicious driver DLLs, resulting in remote code execution with SYSTEM privileges; a local attacker can achieve local privilege escalation via a junction‑point DLL injection. This vulnerability has been confirmed to be remediated, but it is unclear as to when the patch was introduced.

Do I need to act?

-
0.45% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.8/10 High
LOCAL / LOW complexity

Affected Products (2)

Affected Vendors

Vasion

References (5)

Vendor Advisory https://help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm
Vendor Advisory https://help.printerlogic.com/va/Print/Security/Security-Bulletins.htm
Exploit https://pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabiliti...
Third Party Advisory https://www.vulncheck.com/advisories/vasion-print-printerlogic-weak-ssl-tls-cert...
Exploit https://pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabiliti...
33
/ 100
moderate-risk
Severity 24/34 · High
Exploitability 2/34 · Minimal
Exposure 7/34 · Low