Primary

Context

Vasion Print Insecure SSH Client Configuration Vulnerability

Vulnerability

Patched

A vulnerability exists in Vasion Print Virtual Appliance Host prior to 22.0.1049 and Application prior to 20.0.2786. The issue arises because the SSH client within Docker instances is configured to disable host key verification and forward the SSH agent to potentially malicious servers. This could allow an attacker to intercept private keys and use them for unauthorized access within the environment.

Impact

Exploitation of this vulnerability could lead to interception of SSH private keys, allowing for unauthorized lateral movement within the environment.

Remediation

Users can update to Vasion Print Virtual Appliance Host 22.0.1049 and Application 20.0.2786 to address this vulnerability.

Added: Sep 29, 2025, 9:58 PM

Updated: Sep 29, 2025, 9:58 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

8.4

remediation

0.0

relevance

0.6

threat

4.8

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

8.4

remediation

0.0

relevance

0.6

threat

4.8

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vasion Print Insecure SSH Client Configuration Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Vasion Print

Vasion Virtual Appliance Host

Vasion Application

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating