CVE-2025-34218

Опубликовано: 29 сент. 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 22.0.1049 and Application prior to version 20.0.2786 (VA/SaaS deployments) expose internal Docker containers through the gw Docker instance. The gateway publishes a /meta endpoint which lists every micro‑service container together with version information. These containers are reachable directly over HTTP/HTTPS without any access‑control list (ACL), authentication or rate‑limiting. Consequently, any attacker on the LAN or the Internet can enumerate all internal services and their versions, interact with the exposed APIs of each microservice as an unauthenticated user, or issue malicious requests that may lead to information disclosure, privilege escalation within the container, or denial‑of‑service of the entire appliance. The root cause is the absence of authentication and network‑level restrictions on the API‑gateway’s proxy to internal Docker containers, effectively turning the int

Ссылки

https://help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm
Vendor Advisory
https://help.printerlogic.com/va/Print/Security/Security-Bulletins.htm
Vendor Advisory
https://pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabilities.html#va-exposed-docker-instances
Exploit
Third Party Advisory
https://www.vulncheck.com/advisories/vasion-print-printerlogic-exposed-internal-docker-instance
Third Party Advisory
https://pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabilities.html#va-exposed-docker-instances
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:vasion:virtual_appliance_application:*:*:*:*:*:*:*:*

Версия до 20.0.2786 (исключая)

cpe:2.3:a:vasion:virtual_appliance_host:*:*:*:*:*:*:*:*

Версия до 22.0.1049 (исключая)

EPSS

Процентиль: 73%

0.00795

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-306

Связанные уязвимости

GHSA-662c-whx5-q24f