CVE-2025-34193

Name of the Vulnerable Software and Affected Versions Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application

Description The Windows client components (PrinterInstallerClientInterface.exe, PrinterInstallerClient.exe, PrinterInstallerClientLauncher.exe) lack modern exploit mitigations such as Data Execution Prevention (DEP), Address Space Layout Randomization (ASLR), and Control Flow Guard (CFG). These components are built as 32-bit applications, without stack-protection, and utilize outdated technologies like Pascal/Delphi and Python 2. Several processes run with elevated privileges, and the client automatically downloads and installs printer drivers. The absence of these mitigations and the use of unmaintained runtimes increases the risk of remote or local code execution and privilege escalation to SYSTEM through memory corruption or maliciously crafted inputs.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.