Vasion Print (formerly PrinterLogic) Processes Running as Root Inside Docker...

8.7 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application (VA and SaaS deployments) contains multiple Docker containers that run primary application processes (for example PHP workers, Node.js servers and custom binaries) as the root user. This increases the blast radius of a container compromise and enables lateral movement and host compromise when a container is breached.

Basic Information

ID CVE-2025-34204

Source VulnCheck

Published Sep 19, 2025 at 18:41

Affected Product

Vendor Vasion

Product Print Virtual Appliance Host

Version *

Affected Versions Vasion Print Virtual Appliance Host *
Vasion Print Application *

CWE Classification

CWE-269

References

{
    "lastseen": "",
    "description": "Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application (VA and SaaS deployments) contains multiple Docker containers that run primary application processes (for example PHP workers, Node.js servers and custom binaries) as the root user. This increases the blast radius of a container compromise and enables lateral movement and host compromise when a container is breached.",
    "published": "2025-09-19T18:41:02.997Z",
    "modified": "2025-09-19T18:41:02.997Z",
    "type": "cve",
    "title": "Vasion Print (formerly PrinterLogic) Processes Running as Root Inside Docker Instances",
    "source": "VulnCheck",
    "references": "https://pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabilities.html#va-processes-running-as-root\nhttps://help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm\nhttps://help.printerlogic.com/va/Print/Security/Security-Bulletins.htm\nhttps://www.vulncheck.com/advisories/vasion-print-printerlogic-processes-running-as-root-inside-docker-instances",
    "id": "CVE-2025-34204",
    "bulletinFamily": "",
    "cwe": [
        "CWE-269"
    ],
    "cvelist": null,
    "sourceData": "Vasion Print Virtual Appliance Host *\nVasion Print Application *",
    "sourceHref": "",
    "cvss": {
        "score": 8.7,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Print Virtual Appliance Host",
    "version": "*",
    "vendor": "Vasion",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Vasion Print (formerly PrinterLogic) Processes Running as Root Inside Docker Instances_CVE-2025-34204