Primary

Context

Vasion Print Insufficient CSRF Protection Vulnerability

Vulnerability

A vulnerability allowing insufficient Cross-Site Request Forgery (CSRF) protection has been identified in Vasion Print (formerly PrinterLogic) versions prior to Virtual Appliance Host 22.0.843 and Application 20.0.1923. This vulnerability allows CSRF attacks to be executed, as the application does not properly enforce CSRF checks for most forms. Testing revealed that manipulating the CSRF token had no effect on the success of operations, leaving users vulnerable to potential exploitation.

Impact

Exploitation of this vulnerability could lead to unauthorized actions being performed on behalf of users, potentially allowing attackers to manipulate data or settings within the application.

Remediation

Users can update to Vasion Print, Virtual Appliance Host 22.0.843 and Application 20.0.1923 to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

6.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vasion Print Insufficient CSRF Protection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating