What is CVE-2025-34217?

CVE-2025-34217 is a vulnerability in Vasion Print Application, classified under Use of Hard-coded Cryptographic Key. Published 2025-09-30.

Is CVE-2025-34217 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Vasion Print Application

CVE-2025-34217

Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application (VA/SaaS deployments) contain an undocumented 'printerlogic' user with a hardcoded SSH public key in '~/.ssh/authorized_keys' and a sudoers rule granting the print…

EPSS: 0.002 (38.4th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

CWE-321 — Use of Hard-coded Cryptographic Key

Public proof-of-concept exploits

fkie-cad/nvd-json-data-feeds

References

pierrekim.github.io/blog/2025-04-08-vasion-printerlogic-83-vulnerabilities.html (technical-description)
help.printerlogic.com/va/Print/Security/Security-Bulletins.htm (vendor-advisory, patch)
help.printerlogic.com/saas/Print/Security/Security-Bulletins.htm (vendor-advisory, patch)
www.vulncheck.com/advisories/vasion-print-printerlogic-incorrect-encryption-alg… (third-party-advisory)

Frequently asked questions

What is CVE-2025-34217?: CVE-2025-34217 is a vulnerability in Vasion Print Application, classified under Use of Hard-coded Cryptographic Key. Published 2025-09-30.
Is CVE-2025-34217 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.