Vasion Print (formerly PrinterLogic) Insecure Use of file_get_contents()
Description
Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to version 25.1.102 and Application prior to version 25.1.1413 (VA/SaaS deployments) contain a protection mechanism failure vulnerability within the file_get_contents() function. When an administrator configures a printer’s hostname (or similar callback field), the value is passed unchecked to PHP’s file_get_contents()/cURL functions, which follow redirects and impose no allow‑list, scheme, or IP‑range restrictions. An admin‑level attacker can therefore point the hostname to a malicious web server that issues a 301 redirect to internal endpoints such as the AWS EC2 metadata service. The server follows the redirect, retrieves the metadata, and returns or stores the credentials, enabling the attacker to steal cloud IAM keys, enumerate internal services, and pivot further into the SaaS infrastructure. This vulnerability has been confirmed to be remediated, but it is unclear as to when the patch was introduced.
Affected products
4- Range: <25.1.102
- Range: <25.1.102
- Vasion/Print Applicationv5Range: *
- Vasion/Print Virtual Appliance Hostv5Range: *
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- help.printerlogic.com/saas/Print/Security/Security-Bulletins.htmmitrevendor-advisorypatch
- help.printerlogic.com/va/Print/Security/Security-Bulletins.htmmitrevendor-advisorypatch
- www.vulncheck.com/advisories/vasion-print-printerlogic-insecure-use-of-file-get-contents-functionmitrethird-party-advisory
- pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabilities.htmlmitretechnical-description
News mentions
0No linked articles in our index yet.