CVE-2025-34221
CRITICALVasion Print Virtual Appliance <25.2.169 & Application <25.2.1518 - Unauthenticated Remote Access
Title source: llmDescription
Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.2.169 and Application prior to version 25.2.1518 (VA/SaaS deployments) expose every internal Docker container to the network because firewall rules allow unrestricted traffic to the Docker bridge network. Because no authentication, ACL or client‑side identifier is required, the attacker can interact with any internal API, bypassing the product’s authentication mechanisms entirely. The result is unauthenticated remote access to internal services, allowing credential theft, configuration manipulation and potential remote code execution. This vulnerability has been identified by the vendor as: V-2025-002 — Authentication Bypass - Docker Instances.
References (4)
Core 4
Core References
Exploit, Third Party Advisory technical-description
https://pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabilities.html#va-auth-bypass
Vendor Advisory vendor-advisory
patch
https://help.printerlogic.com/va/Print/Security/Security-Bulletins.htm
Vendor Advisory vendor-advisory
patch
https://help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm
Third Party Advisory third-party-advisory
https://www.vulncheck.com/advisories/vasion-print-printerlogic-unrestriced-access-to-docker-bridge-network
Scores
CVSS v3
9.8
EPSS
0.0138
EPSS Percentile
68.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
total
Details
CWE
CWE-306
Status
published
Products (4)
Vasion/Print Application
< 25.2.1518
Vasion/Print Virtual Appliance Host
< 25.2.169
vasion/virtual_appliance_application
< 25.2.1518
vasion/virtual_appliance_host
< 25.2.169
Published
Sep 29, 2025
Tracked Since
Feb 18, 2026