216.73.217.50

CVE-2025-34207

· Published 29/09/2025 21:15 · Modified 30/09/2025 14:15

Labels: CVE-2025-34207 2025-09-29CVE-2025-34207CWE-306[email protected]

Essential information

Published
29/09/2025 21:15
Modified
30/09/2025 14:15
Author
Creator
CVSS
7.9 HIGH (v3) 7.9 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Vasion Print (formerly PrinterLogic) Virtual Appliance Host prior to 22.0.1049 and Application prior to 20.0.2786 (VA and SaaS deployments) configure the SSH client within Docker instances with the following options: `UserKnownHostsFile=/dev/null`, `StrictHostKeyChecking=no`, and `ForwardAgent yes`. These settings disable verification of the remote host’s SSH key and automatically forward the developer’s SSH‑agent to any host that matches the configured wildcard patterns. As a result, an attacker who can reach a single compromised container can cause the container to connect to a malicious SSH server, capture the forwarded private keys, and use those keys for unrestricted lateral movement across the environment.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
vasion print / virtual appliance host cpe:2.3:a:vasion_print:virtual_appliance_host:<22.0.1049:*:*:*:*:*:*:*
vasion print / application cpe:2.3:a:vasion_print:application:<20.0.2786:*:*:*:*:*:*:*

References