CVE-2022-25089
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2022-25089
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Printix Secure Cloud Print Management through 1.3.1106.0 incorrectly uses Privileged APIs to modify values in HKEY_LOCAL_MACHINE via UITasks.PersistentRegistryData.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Kofax Printix Secure Cloud Print Management 代码注入漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Kofax Printix Secure Cloud Print Management是美国Kofax公司的一个基于云的打印管理软件,灵活、可扩展且易于使用。可以随时随地使用所有用户和组织所需的现代打印功能来管理和维护复杂的打印环境。 Kofax Printix Secure Cloud Print Management 1.3.1035.0 版本及之前版本存在代码注入漏洞,该漏洞源于软件错误地使用了特权api。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2022-25089
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | An "Incorrect Use of a Privileged API" vulnerability in PrintixService.exe, in Printix's "Printix Secure Cloud Print Management", Version 1.3.1106.0 and below allows a Local Or Remote attacker the ability change all HKEY Windows Registry values as SYSTEM context via the UITasks.PersistentRegistryData parameter. | https://github.com/ComparedArray/printix-CVE-2022-25089 | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2022-25089
请登录查看更多情报信息。
- https://github.com/ComparedArray/printix-CVE-2022-25089x_refsource_MISC
- http://printix.comx_refsource_MISC
- https://www.exploit-db.com/exploits/50798x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2022-25089
Same Patch Batch · n/a · 2022-03-02 · 61 CVEs total
| CVE-2022-23956 | HP PC 输入验证错误漏洞 | |
| CVE-2021-3738 | Samba 资源管理错误漏洞 | |
| CVE-2021-3654 | OpenStack 输入验证错误漏洞 | |
| CVE-2021-3631 | Red Hat libvirt 安全漏洞 | |
| CVE-2021-23222 | PostgreSQL 安全漏洞 | |
| CVE-2021-3667 | Red Hat libvirt 安全漏洞 | |
| CVE-2022-23878 | SeaCMS 安全漏洞 | |
| CVE-2021-38268 | Liferay Portal 安全漏洞 | |
| CVE-2022-22944 | Vmware Workspace One Boxer 跨站脚本漏洞 | |
| CVE-2022-25045 | Home Owners Collection Management System 信任管理问题漏洞 | |
| CVE-2022-25016 | Home Owners Collection Management System 代码问题漏洞 | |
| CVE-2022-23953 | HP PC 输入验证错误漏洞 | |
| CVE-2022-23954 | HP PC 输入验证错误漏洞 | |
| CVE-2022-23955 | HP PC 输入验证错误漏洞 | |
| CVE-2022-23958 | HP PC 输入验证错误漏洞 | |
| CVE-2022-23957 | HP PC 输入验证错误漏洞 | |
| CVE-2021-41001 | Aruba AOS-CX 命令注入漏洞 | |
| CVE-2021-41000 | Aruba AOS-CX 命令注入漏洞 | |
| CVE-2021-41002 | Aruba AOS-CX 路径遍历漏洞 | |
| CVE-2021-41003 | Aruba AOS-CX 跨站脚本漏洞 |
Showing top 20 of 61 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2022-25089
No comments yet