CVE-2025-34216

Name of the Vulnerable Software and Affected Versions Vasion Print versions prior to 22.0.1026 Vasion Print Application versions prior to 20.0.2702

Description Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application deployments expose unauthenticated REST API endpoints. These endpoints return configuration files and clear-text passwords, and also disclose the Laravel APP KEY used for cryptographic signing. Obtaining the APP KEY allows an attacker to craft malicious payloads accepted by the application, leading to remote code execution on the appliance. The vendor has identified this as V-2024-018 — RCE & Leaks via API.

Recommendations Update Vasion Print Virtual Appliance Host to version 22.0.1026 or later. Update Vasion Print Application to version 20.0.2702 or later.