Primary

Context

Vasion Print Hardcoded SSH Key Vulnerability Granting Root Access

Vulnerability

A critical vulnerability exists in Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application within VA/SaaS deployments. It involves an undocumented 'printerlogic' user with a hardcoded SSH public key in the authorized_keys file, allowing access via the corresponding private key. Additionally, a sudoers rule permits the 'printerlogic_ssh' group to execute any command without a password. This vulnerability effectively grants root access to the appliance.

Impact

Exploitation of this vulnerability provides root access to the Vasion Print Virtual Appliance.

Remediation

Users can update to Vasion Print, Virtual Appliance Host v22.0.1049 / Application v20.0.2786, where this vulnerability has been fixed.

Added: Sep 30, 2025, 2:25 PM

Updated: Sep 30, 2025, 2:25 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

8.4

remediation

0.0

relevance

0.6

threat

4.8

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

8.4

remediation

0.0

relevance

0.6

threat

4.8

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vasion Print Hardcoded SSH Key Vulnerability Granting Root Access

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating