CVE-2025-27641
Published: 05 March 2025
Description
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Security Summary
CVE-2025-27641 is a critical improper authentication vulnerability (CWE-287) in Vasion Print, formerly known as PrinterLogic, affecting versions before Virtual Appliance Host 22.0.951 Application 20.0.2368. It enables unauthenticated access to APIs for Single-Sign On, designated as V-2024-009. The issue carries a CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H), highlighting its severe potential impact.
Remote attackers can exploit this vulnerability over the network with low attack complexity, requiring no privileges, authentication, or user interaction. Successful exploitation allows high-impact compromise of confidentiality, integrity, and availability, potentially enabling full system control on affected appliances.
Mitigation guidance and patches are detailed in vendor advisories, including PrinterLogic's security bulletins at https://help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm. Additional analysis appears in Pierre Kim's blog post on 83 Vasion/PrinterLogic vulnerabilities at https://pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabilities.html and a Full Disclosure mailing list entry at http://seclists.org/fulldisclosure/2025/Apr/18.
Details
- CWE(s)
Affected Products
MITRE ATT&CK Enterprise Techniques
Why these techniques?
Improper authentication vulnerability enabling unauthenticated remote access to SSO APIs on a public-facing virtual appliance directly facilitates exploitation of public-facing applications for initial access and potential full system compromise.