Home

Description

Vasion Print (formerly PrinterLogic) Virtual Appliance Host versions prior to 22.0.893 and Application versions prior to 20.0.2140 (macOS/Linux client deployments) are built against OpenSSL 1.0.2h-fips (released May 2016), which has been end-of-life since 2019 and is no longer supported by the OpenSSL project. Continued use of this outdated cryptographic library exposes deployments to known vulnerabilities that are no longer patched, weakening the overall security posture. Affected daemons may emit deprecation warnings and rely on cryptographic components with unresolved security flaws, potentially enabling attackers to exploit weaknesses in TLS/SSL processing or cryptographic operations. This vulnerability has been identified by the vendor as: V-2023-021 — Out-of-Date OpenSSL Library.

PUBLISHED Reserved 2025-04-15 | Published 2025-09-19 | Updated 2025-10-02 | Assigner VulnCheck




CRITICAL: 9.3CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-1104: Use of Unmaintained Third Party Components

Product status

Default status
unaffected

* (semver) before 22.0.893
affected

Default status
unknown

* (semver) before 20.0.2140
affected

Credits

Pierre Barre finder

References

help.printerlogic.com/...int/Security/Security-Bulletins.htm vendor-advisory patch

pierrekim.github.io/...-printerlogic-83-vulnerabilities.html technical-description

help.printerlogic.com/...int/Security/Security-Bulletins.htm vendor-advisory patch

www.vulncheck.com/...utdated-and-unsupported-openssl-version third-party-advisory

cve.org (CVE-2025-34192)

nvd.nist.gov (CVE-2025-34192)

Download JSON