CVE-2025-34233

Name of the Vulnerable Software and Affected Versions Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 25.1.102 Vasion Print (formerly PrinterLogic) Application versions prior to 25.1.1413

Description A protection mechanism failure exists in the file get contents() function within Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application. When an administrator configures a printer’s hostname, the value is passed unchecked to PHP’s file get contents() and cURL functions. These functions follow redirects without restrictions on allow-lists, schemes, or IP ranges. An attacker with administrator-level access can redirect the hostname to a malicious web server that issues a 301 redirect to internal endpoints, such as the AWS EC2 metadata service. This allows the attacker to retrieve metadata, potentially stealing cloud IAM keys, enumerating internal services, and pivoting further into the infrastructure. The issue involves the use of the file get contents() function and the lack of input validation for the hostname parameter.

Recommendations Update Vasion Print Virtual Appliance Host to version 25.1.102 or later. Update Vasion Print Application to version 25.1.1413 or later.