CVE-2025-34204 HIGH

CVE-2025-34204: Vasion Print (formerly PrinterLogic) Processes Running as Root Inside Docker Instances

Vendor Vasion
Product Print Virtual Appliance Host
Weakness CWE-269
Published September 19, 2025
Last update November 17, 2025

CVSS base score

8.7/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Vasion Print (formerly PrinterLogic) Virtual Appliance Host and Application (VA and SaaS deployments) contains multiple Docker containers that run primary application processes (for example PHP workers, Node.js servers and custom binaries) as the root user. This increases the blast radius of a container compromise and enables lateral movement and host compromise when a container is breached.

Key dates

02Disclosure timeline

September 19, 2025 CVE published
November 17, 2025 Record updated