Cyber Resilience

CVE-2025-27651

Critical

Published: 05 March 2025

Published
05 March 2025
Modified
03 November 2025
KEV Added
Patch
CVSS Score v3.1 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0012 30.8th percentile
Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-27651 is a critical-severity SSRF (CWE-918) vulnerability in Printerlogic Vasion Print. Its CVSS base score is 9.8 (Critical).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 30.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 AC-4 (Information Flow Enforcement) and SI-10 (Information Input Validation).

Deeper analysis

CVE-2025-27651 is a Server-Side Request Forgery (SSRF) vulnerability, classified under CWE-918, affecting Vasion Print (formerly known as PrinterLogic) Virtual Appliance Host versions prior to 22.0.862 with Application 20.0.2014. This flaw, also referenced as Elatec V-2023-014, carries a CVSS v3.1 base score of 9.8, indicating critical severity due to its network accessibility, low attack complexity, and lack of prerequisites for exploitation.

The vulnerability enables exploitation by unauthenticated remote attackers over the network with no user interaction required. Successful exploitation allows attackers to achieve high impacts on confidentiality, integrity, and availability, potentially compromising the affected appliance by forging requests to internal or external resources.

Mitigation details are outlined in vendor security bulletins and related disclosures available at https://help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm, https://pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabilities.html, and http://seclists.org/fulldisclosure/2025/Apr/18. Security practitioners should upgrade to Virtual Appliance Host 22.0.862 or later with Application 20.0.2014 to address this issue.

EU & UK References

Vulnerability details

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.862 Application 20.0.2014 allows Server-Side Request Forgery: Elatec V-2023-014.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Why these techniques?

The described unauthenticated remote SSRF vulnerability in a public-facing virtual appliance directly enables the Exploit Public-Facing Application technique (T1190), allowing attackers to forge requests to internal/external resources and achieve full compromise with high CIA impact.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2025-27652Same product: Printerlogic Vasion Print
CVE-2025-27655Same product: Printerlogic Vasion Print
CVE-2025-27668Same product: Printerlogic Vasion Print
CVE-2025-27671Same product: Printerlogic Vasion Print
CVE-2025-27670Same product: Printerlogic Vasion Print
CVE-2025-27665Same product: Printerlogic Vasion Print
CVE-2025-27675Same product: Printerlogic Vasion Print
CVE-2025-27664Same product: Printerlogic Vasion Print
CVE-2025-27658Same product: Printerlogic Vasion Print
CVE-2025-27642Same product: Printerlogic Vasion Print

Affected Assets

printerlogic
vasion print
≤ 20.0.2014
printerlogic
virtual appliance
≤ 22.0.862

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly mitigates the SSRF vulnerability by identifying, reporting, and applying vendor-recommended upgrades to Virtual Appliance Host 22.0.862 or later.

prevent

Validates and sanitizes user-supplied inputs like URLs to block SSRF exploitation in the affected PrinterLogic application.

prevent

Enforces information flow control policies to restrict the appliance from making unauthorized server-side requests to internal or external resources.

References