CVE-2025-34191— Vasion Print (formerly PrinterLogic) Arbitrary File Write as Root via Response Path Symlink Follow
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-34191
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Vasion Print (formerly PrinterLogic) Arbitrary File Write as Root via Response Path Symlink Follow
Source: NVD (National Vulnerability Database)
Vulnerability Description
Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 22.0.843 and Application prior to 20.0.1923 (macOS/Linux client deployments) contain an arbitrary file write vulnerability via the response file handling. When tasks produce output the service writes response data into files under /opt/PrinterInstallerClient/tmp/responses/ reusing the requested filename. The service follows symbolic links in the responses directory and writes as the service user (typically root), allowing a local, unprivileged user to cause the service to overwrite or create arbitrary files on the filesystem as root. This can be used to modify configuration files, replace or inject binaries or drivers, and otherwise achieve local privilege escalation and full system compromise. This vulnerability has been identified by the vendor as: V-2023-019 — Arbitrary File Write as Root.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
在文件访问前对链接解析不恰当(链接跟随)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Vasion Print和Vasion Print Virtual Appliance Host 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Vasion Print和Vasion Print Virtual Appliance Host都是Vasion公司的产品。Vasion Print是一款基于 SaaS 的云托管应用程序,用于管理和部署打印机。Vasion Print Virtual Appliance Host是一个打印管理软件。 Vasion Print Virtual Appliance Host 22.0.843之前版本和Vasion Print Application 20.0.1923之前版本存在安全漏洞,该漏洞源于响应文件处
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Vasion | Print Virtual Appliance Host | * ~ 22.0.843 | - | |
| Vasion | Print Application | * ~ 20.0.1923 | - |
II. Public POCs for CVE-2025-34191
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-34191
请登录查看更多情报信息。
- https://pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabilities.html#mac-arbitrary-file-writetechnical-descriptionexploit
- https://nvd.nist.gov/vuln/detail/CVE-2025-34191
Same Patch Batch · Vasion · 2025-09-19 · 18 CVEs total
| CVE-2025-34195 | Vasion Print (formerly PrinterLogic) Unquoted Path During Driver Installation Leads to Exe | |
| CVE-2025-34190 | Vasion Print (formerly PrinterLogic) PrinterInstallerClientService Authentication Bypass v | |
| CVE-2025-34188 | Vasion Print (formerly PrinterLogic) Local Log Disclosure of Cleartext Sessions | |
| CVE-2025-34205 | Vasion Print (formerly PrinterLogic) Dangerous PHP Dead Code Enables RCE | |
| CVE-2025-34199 | Vasion Print (formerly PrinterLogic) Insecure SSL Verification Allows Man-in-the-Middle At | |
| CVE-2025-34193 | Vasion Print (formerly PrinterLogic) Insecure Windows Components Lack Modern Memory Protec | |
| CVE-2025-34201 | Vasion Print (formerly PrinterLogic) Lack of Network Segmentation Between Docker Instances | |
| CVE-2025-34203 | Vasion Print (formerly PrinterLogic) Use of Outdated, End-Of-Life, and Vulnerable Third-Pa | |
| CVE-2025-34198 | Vasion Print (formerly PrinterLogic) Shared / Hardcoded SSH Host Private Keys in Appliance | |
| CVE-2025-34200 | Vasion Print (formerly PrinterLogic) Network Account Password Stored in Cleartext | |
| CVE-2025-34197 | Vasion Print (formerly PrinterLogic) Undocumented Local Account with Hardcoded Password an | |
| CVE-2025-34194 | Vasion Print (formerly PrinterLogic) Local Privilege Escalation via Insecure Temporary Fil | |
| CVE-2025-34204 | Vasion Print (formerly PrinterLogic) Processes Running as Root Inside Docker Instances | |
| CVE-2025-34206 | Vasion Print (formerly PrinterLogic) Insecure Shared Storage Permissions | |
| CVE-2025-34192 | Vasion Print (formerly PrinterLogic) Usage of Outdated and Unsupported OpenSSL Version | |
| CVE-2025-34189 | Vasion Print (formerly PrinterLogic) Insecure Inter-Process Communication Allows Local Ses | |
| CVE-2025-34202 | Vasion Print (formerly PrinterLogic) Insecure Access to Docker Instances WAN |
IV. Related Vulnerabilities
Same product: Print Virtual Appliance Host
- CVE-2025-34210
Vasion Print (formerly PrinterLogic) Readable Cleartext Pass - CVE-2025-34208
Vasion Print (formerly PrinterLogic) Insecure Password Hashi - CVE-2025-34217
Vasion Print (formerly PrinterLogic) Undocumented Hardcoded - CVE-2025-34235
Vasion Print (formerly PrinterLogic) Weak SSL/TLS Certificat - CVE-2025-34221
Vasion Print (formerly PrinterLogic)
Same vendor: Vasion
- CVE-2025-34210
Vasion Print (formerly PrinterLogic) Readable Cleartext Pass - CVE-2025-34208
Vasion Print (formerly PrinterLogic) Insecure Password Hashi - CVE-2025-34217
Vasion Print (formerly PrinterLogic) Undocumented Hardcoded - CVE-2025-34235
Vasion Print (formerly PrinterLogic) Weak SSL/TLS Certificat - CVE-2025-34221
Vasion Print (formerly PrinterLogic)
Same weakness: CWE-59
- CVE-2021-47949
CyberPanel 2.1 Authenticated Remote Code Execution via Symli - CVE-2026-41882
JetBrains IntelliJ IDEA 后置链接漏洞 - CVE-2026-27105
Dell Alienware Purchased Apps 后置链接漏洞 - CVE-2026-5161
Improper Authentication in TUBITAK BILGEM's Pardus About - CVE-2026-41397
OpenClaw < 2026.3.31 - Sandbox Escape via Unrestricted File
V. Comments for CVE-2025-34191
No comments yet