Vasion Print Weak SSL/TLS Certificate Validation Leading to Remote Code Execution

A vulnerability exists in Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.1.102 and Application prior to version 25.1.1413, specifically in Windows client deployments. The issue arises from a registry key that can be enabled by administrators, allowing the client to bypass SSL/TLS certificate validation. This flaw enables an attacker who can intercept HTTPS traffic to inject malicious driver DLLs, causing remote code execution with SYSTEM privileges. Additionally, a local attacker could exploit this vulnerability for local privilege escalation through junction-point DLL injection.

Impact

Exploitation of this vulnerability allows for remote code execution with SYSTEM privileges on the affected machine. Furthermore, a local attacker could achieve local privilege escalation by exploiting DLL injection via junction points.

Remediation

Users can update to Vasion Print Virtual Appliance Host version 25.1.102 and Application version 25.1.1413 or later. For those using the Vasion Windows Client, an update to version 25.0.0.897 or later is recommended.