Cyber Resilience

CVE-2025-27664

High

Published: 05 March 2025

Published
05 March 2025
Modified
01 April 2025
KEV Added
Patch
CVSS Score v3.1 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score 0.0046 64.4th percentile
Risk Priority 18 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-27664 is a high-severity CSRF (CWE-352) vulnerability in Printerlogic Vasion Print. Its CVSS base score is 8.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 35.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SC-23 (Session Authenticity) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2025-27664 is an insufficient Cross-Site Request Forgery (CSRF) protection vulnerability, classified under CWE-352 and tracked as OVE-20230524-0008, affecting Vasion Print (formerly known as PrinterLogic) Virtual Appliance Host versions prior to 22.0.843 with Application versions prior to 20.0.1923. This flaw enables attackers to bypass CSRF protections in the print management software, which is commonly deployed in enterprise environments for centralized printer administration.

The vulnerability has a CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H), indicating it is exploitable over the network with low complexity and no required privileges, though it necessitates user interaction. Unauthenticated attackers can craft malicious web pages or links that trick authenticated users—such as administrators—into involuntarily executing unauthorized actions on the Vasion Print appliance, potentially leading to high-impact compromise of confidentiality, integrity, and availability, including data exfiltration, modification of print configurations, or full system takeover.

Mitigation details are outlined in the official PrinterLogic security bulletins available at https://help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm, which security practitioners should consult for patching instructions and workarounds specific to affected versions.

EU & UK References

Vulnerability details

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Insufficient CSRF Protection OVE-20230524-0008.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Why these techniques?

The CVE describes a CSRF vulnerability in a network-accessible web-based print management application, enabling attackers to craft malicious links/pages that trick authenticated users into performing unauthorized high-impact actions on the appliance, directly mapping to exploitation of a public-facing application for initial access or compromise.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2025-27668Same product: Printerlogic Vasion Print
CVE-2025-27671Same product: Printerlogic Vasion Print
CVE-2025-27670Same product: Printerlogic Vasion Print
CVE-2025-27652Same product: Printerlogic Vasion Print
CVE-2025-27665Same product: Printerlogic Vasion Print
CVE-2025-27675Same product: Printerlogic Vasion Print
CVE-2025-27651Same product: Printerlogic Vasion Print
CVE-2025-27658Same product: Printerlogic Vasion Print
CVE-2025-27642Same product: Printerlogic Vasion Print
CVE-2025-27681Same product: Printerlogic Vasion Print

Affected Assets

printerlogic
vasion print
≤ 20.0.1923
printerlogic
virtual appliance
≤ 22.0.843

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly requires mechanisms to protect session authenticity, preventing CSRF attacks by ensuring state-changing requests cannot be forged by unauthenticated sources.

prevent

Mandates timely flaw remediation through patching, directly addressing the insufficient CSRF protection vulnerability in affected Vasion Print versions.

prevent

Requires validation of information inputs from external sources, which can include CSRF token checks to mitigate forged requests.

References