Cyber Resilience

CVE-2025-27668

Critical

Published: 05 March 2025

Published
05 March 2025
Modified
01 April 2025
KEV Added
Patch
CVSS Score v3.1 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0048 65.4th percentile
Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-27668 is a critical-severity Inclusion of Functionality from Untrusted Control Sphere (CWE-829) vulnerability in Printerlogic Vasion Print. Its CVSS base score is 9.8 (Critical).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 34.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-15 (Information Output Filtering).

Deeper analysis

CVE-2025-27668 is a high-severity vulnerability in Vasion Print, formerly known as PrinterLogic, specifically affecting versions of the Virtual Appliance Host before 22.0.843 with Application before 20.0.1923. The issue enables arbitrary content inclusion via iframe, tracked as OVE-20230524-0012 and mapped to CWE-829 (Inclusion of Functionality from Untrusted Control Sphere). It carries a CVSS v3.1 base score of 9.8, reflecting critical risk due to its network accessibility, low attack complexity, and lack of prerequisites.

Unauthenticated attackers can exploit this vulnerability remotely over the network without user interaction or privileges, achieving high impacts on confidentiality, integrity, and availability (C:H/I:H/A:H) within the unchanged scope. By injecting arbitrary iframes, attackers could include malicious external content, potentially leading to unauthorized data access, modification, or disruption of the print management appliance's functionality.

Mitigation details are outlined in the vendor's security bulletin at https://help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm, which practitioners should consult for patching instructions and workarounds applicable to affected Virtual Appliance Host and Application versions.

EU & UK References

Vulnerability details

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Arbitrary Content Inclusion via Iframe OVE-20230524-0012.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Why these techniques?

The CVE describes a remote unauthenticated vulnerability in a public-facing web application (Vasion Print Virtual Appliance) allowing arbitrary iframe/content inclusion from untrusted sources, directly enabling exploitation of public-facing applications.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2025-27664Same product: Printerlogic Vasion Print
CVE-2025-27671Same product: Printerlogic Vasion Print
CVE-2025-27651Same product: Printerlogic Vasion Print
CVE-2025-27670Same product: Printerlogic Vasion Print
CVE-2025-27641Same product: Printerlogic Vasion Print
CVE-2025-27681Same product: Printerlogic Vasion Print
CVE-2025-27658Same product: Printerlogic Vasion Print
CVE-2025-27652Same product: Printerlogic Vasion Print
CVE-2025-27672Same product: Printerlogic Vasion Print
CVE-2025-27659Same product: Printerlogic Vasion Print

Affected Assets

printerlogic
vasion print
≤ 20.0.1923
printerlogic
virtual appliance
≤ 22.0.843

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly mitigates CVE-2025-27668 by requiring timely patching of the vulnerable Virtual Appliance Host and Application versions as specified in the vendor security bulletin.

prevent

Validates information inputs to block injection of arbitrary iframe sources from untrusted control spheres, addressing CWE-829 exploitation.

prevent

Filters information outputs to prevent rendering of malicious iframes that could lead to unauthorized data access, modification, or disruption.

References