Primary

Context

Vasion Print Cookie Exposure Vulnerability

Vulnerability

A vulnerability exists in Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 22.0.843 and Application versions prior to 20.0.1923. This vulnerability allows cookies to be returned in the response body, which undermines the HTTPOnly security feature designed to prevent JavaScript from accessing cookie values. Such exposure could facilitate session hijacking, enabling an attacker to impersonate a user and gain unauthorized access to the console.

Impact

Exploitation of this vulnerability could lead to session hijacking, allowing an attacker to impersonate a user and access sensitive console information.

Remediation

This vulnerability has been fixed in Vasion Print, Virtual Appliance Host 22.0.843 and Application 20.0.1923.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vasion Print Cookie Exposure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating