CVE-2025-34204CRITICAL 9.8EPSS p45.5%

CVE-2025-34204CVE-2025-34204

Description

Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application (VA and SaaS deployments) contains multiple Docker containers that run primary application processes (for example PHP workers, Node.js servers and custom binaries) as the root user. This increases the blast radius of a container compromise and enables lateral movement and host compromise when a container is breached.

Scoring

CVSS 3.19.8 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.63% probability of exploitation · percentile 45.5% · 2026-06-18T12:00:27Z
Published2025-09-19
Last modified2025-09-24

Underlying weaknesses· 1

CWE-269

References

  1. https://help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm
  2. https://help.printerlogic.com/va/Print/Security/Security-Bulletins.htm
  3. https://pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabilities.html#va-processes-running-as-root
  4. https://www.vulncheck.com/advisories/vasion-print-printerlogic-processes-running-as-root-inside-docker-instances

1

TypeTargetConfidenceTier
WeaknessImproper Privilege Managementcwe-2690%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-34202
CVE
CVE-2025-34206
CVE
CVE-2025-34221
CVE
CVE-2025-34203
CVE
CVE-2025-34218
CVE
CVE-2025-34212
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.