{"id":76152,"date":"2025-09-26T02:21:24","date_gmt":"2025-09-26T02:21:24","guid":{"rendered":""},"modified":"2025-10-16T23:38:41","modified_gmt":"2025-10-17T05:38:41","slug":"cve-2025-34198-critical-vulnerability-in-vasion-print-virtual-appliance-due-to-shared-hardcoded-ssh-keys","status":"publish","type":"post","link":"https:\/\/www.ameeba.com\/blog\/cve-2025-34198-critical-vulnerability-in-vasion-print-virtual-appliance-due-to-shared-hardcoded-ssh-keys\/","title":{"rendered":"<strong>CVE-2025-34198: Critical Vulnerability in Vasion Print Virtual Appliance due to Shared, Hardcoded SSH Keys<\/strong>"},"content":{"rendered":"<p><strong>Overview<\/strong><\/p>\n<p>The CVE-2025-34198 vulnerability is a critical exploit found in Vasion Print&#8217;s Virtual Appliance Host and Application, formerly known as PrinterLogic. The vulnerability stems from the presence of shared, hardcoded SSH host private keys in the appliance image. These keys are not unique to each installation, but instead are the same across all deployments, which leaves the <a href=\"https:\/\/www.ameeba.com\/blog\/cve-2025-9253-stack-based-buffer-overflow-on-linksys-wi-fi-range-extenders-leading-to-potential-system-compromise\/\"  data-wpil-monitor-id=\"84245\">system open for potential<\/a> compromise.<br \/>\nThis vulnerability is significant as it affects any organization or individual using <a href=\"https:\/\/www.ameeba.com\/blog\/cve-2025-28041-access-control-vulnerability-in-itranswarp-up-to-version-2-19\/\"  data-wpil-monitor-id=\"85989\">Vasion Print&#8217;s Virtual Appliance<\/a> Host versions prior to 22.0.951 and Application prior to 20.0.2368. The implications of this <a href=\"https:\/\/www.ameeba.com\/blog\/cve-2025-50972-sql-injection-vulnerability-in-abantecart-1-4-2-with-a-high-severity-score\/\"  data-wpil-monitor-id=\"83513\">vulnerability are severe<\/a>, as an attacker could potentially decrypt or intercept SSH connections to appliances using the same keys, leading to potential system compromises and data leakage.<\/p>\n<p><strong>Vulnerability Summary<\/strong><\/p>\n<p>CVE ID: CVE-2025-34198<br \/>\nSeverity: Critical (9.8)<br \/>\nAttack Vector: Network<br \/>\nPrivileges Required: Low<br \/>\nUser Interaction: None<br \/>\nImpact: <a href=\"https:\/\/www.ameeba.com\/blog\/cve-2025-22404-potential-system-compromise-due-to-use-after-free-vulnerability\/\"  data-wpil-monitor-id=\"85533\">System compromise<\/a>, data leakage<\/p>\n<p><strong>Affected Products<\/strong><\/p><div id=\"ameeb-576820706\" class=\"ameeb-content-2 ameeb-entity-placement\"><div style=\"border-left: 4px solid #555; padding-left: 20px; margin: 48px 0; font-family: Roboto, sans-serif; color: #ffffff; line-height: 1.6; max-width: 720px;\">\r\n  <h2 style=\"margin-top: 0; font-size: 22px; font-weight: 600; display: flex; align-items: center; letter-spacing: -0.02em;\">\r\n    <a href=\"https:\/\/www.ameeba.com\/chat\" style=\"display: inline-flex; align-items: center; margin-right: 10px;\">\r\n      <img decoding=\"async\" src=\"https:\/\/www.ameeba.com\/blog\/wp-content\/uploads\/2025\/10\/Best-App-icon-Ameeba.png\" alt=\"Ameeba Chat Icon\" style=\"width: 42px; height: 42px;\" \/>\r\n    <\/a>\r\n    Share secrets securely\r\n  <\/h2>\r\n\r\n  <p style=\"margin-bottom: 14px; color: #d1d5db;\">\r\n    Ameeba is private infrastructure for communication and sensitive work built on encrypted identity instead of exposed corporate identity systems.\r\n  <\/p>\r\n\r\n  <p style=\"margin-bottom: 18px; color: #a1a1aa;\">\r\n    Passwords, credentials, confidential files, screenshots, internal discussions, sensitive AI context, and private coordination should not become exposed across ordinary communication platforms.\r\n  <\/p>\r\n\r\n  <ul style=\"list-style: none; padding-left: 0; margin-bottom: 24px; color: #e4e4e7;\">\r\n    <li style=\"margin-bottom: 8px;\">\u2022 Encrypted identity<\/li>\r\n    <li style=\"margin-bottom: 8px;\">\u2022 Private Spaces for organizations and teams<\/li>\r\n    <li style=\"margin-bottom: 8px;\">\u2022 End-to-end encrypted chat, calls, files, and notes<\/li>\r\n    <li style=\"margin-bottom: 8px;\">\u2022 Sensitive AI work and protected collaboration<\/li>\r\n    <li>\u2022 Built for information that cannot leak<\/li>\r\n  <\/ul>\r\n\r\n  <p style=\"font-style: italic; font-weight: 600; margin-bottom: 24px; color: #ffffff;\">\r\n    Our mission is to secure human work alongside AI.\r\n  <\/p>\r\n\r\n  <div style=\"display: flex; flex-wrap: wrap; gap: 12px;\">\r\n    <a href=\"https:\/\/www.ameeba.com\/chat\/download\" style=\"background-color: #ffffff; color: #000000; padding: 10px 20px; text-decoration: none; border-radius: 8px; font-weight: 500;\">\r\n      Download Ameeba\r\n    <\/a>\r\n\r\n    <a href=\"https:\/\/www.ameeba.com\/chat\" style=\"border: 1px solid #ffffff; color: #ffffff; padding: 10px 20px; text-decoration: none; border-radius: 8px; font-weight: 500;\">\r\n      Learn More\r\n    <\/a>\r\n  <\/div>\r\n<\/div><\/div>\n<p>Product | Affected Versions<\/p>\n<p><a href=\"https:\/\/www.ameeba.com\/blog\/cve-2025-34192-critical-security-vulnerability-in-vasion-print-due-to-outdated-openssl-library\/\"  data-wpil-monitor-id=\"89460\">Vasion Print<\/a> Virtual Appliance Host | Versions prior to 22.0.951<br \/>\n<a href=\"https:\/\/www.ameeba.com\/blog\/cve-2025-34193-critical-vulnerability-in-vasion-print-virtual-appliance-host-and-application\/\"  data-wpil-monitor-id=\"90127\">Vasion Print<\/a> Application | Versions prior to 20.0.2368<\/p>\n<p><strong>How the Exploit Works<\/strong><\/p>\n<p>The exploit takes advantage of the shared, hardcoded SSH host private keys present in the <a href=\"https:\/\/www.ameeba.com\/blog\/cve-2025-34205-critical-php-dead-code-vulnerability-in-vasion-print-virtual-appliance-host\/\"  data-wpil-monitor-id=\"89820\">appliance image of the affected Vasion Print<\/a> products. An attacker who gains access to these keys, either by compromising an appliance image or from another installation, can use them to impersonate the appliance. This would allow the attacker to decrypt or intercept SSH connections to appliances using the same keys. Furthermore, they could potentially perform man-in-the-middle or impersonation attacks against administrative SSH sessions, <a href=\"https:\/\/www.ameeba.com\/blog\/cve-2025-7775-critical-memory-overflow-vulnerability-in-netscaler-adc-and-gateway-leading-to-potential-system-compromise\/\"  data-wpil-monitor-id=\"83736\">leading to unauthorized access and potential system<\/a> compromise.<\/p>\n<p><strong>Conceptual Example Code<\/strong><\/p><div id=\"ameeb-593174391\" class=\"ameeb-content ameeb-entity-placement\"><div class=\"poptin-embedded\" data-id=\"f6b387694f681\"><\/div>\r\n\r\n\r\n\r\n\r\n\r\n<\/div>\n<p>While there isn&#8217;t a specific &#8220;malicious <a href=\"https:\/\/www.ameeba.com\/blog\/cve-2024-58259-denial-of-service-vulnerability-in-rancher-manager-due-to-unrestricted-payload-size\/\"  data-wpil-monitor-id=\"85797\">payload&#8221; for this type of vulnerability<\/a>, an attack might follow a pattern like this:<br \/>\n1. Attacker gains <a href=\"https:\/\/www.ameeba.com\/blog\/cve-2025-8857-unauthenticated-remote-access-due-to-hard-coded-credentials-in-clinic-image-system\/\"  data-wpil-monitor-id=\"86303\">access to an appliance image<\/a> or another installation and retrieves the shared, hardcoded SSH host private keys.<br \/>\n2. Attacker uses these keys to impersonate the appliance and sets up a false SSH server.<br \/>\n3. When an administrator attempts to connect to the real appliance via SSH, they are instead connected to the false server set up by the attacker.<br \/>\n4. The attacker now has access to the administrator&#8217;s <a href=\"https:\/\/www.ameeba.com\/blog\/cve-2025-35451-unchangeable-hard-coded-credentials-in-ptzoptics-cameras-expose-users-to-data-leakage\/\"  data-wpil-monitor-id=\"88225\">credentials and any data<\/a> sent during the session.<\/p>\n<pre><code class=\"\" data-line=\"\">ssh -i retrieved_key.pem admin@fake-appliance-setup-by-attacker.com<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"<p>Overview The CVE-2025-34198 vulnerability is a critical exploit found in Vasion Print&#8217;s Virtual Appliance Host and Application, formerly known as PrinterLogic. The vulnerability stems from the presence of shared, hardcoded SSH host private keys in the appliance image. These keys are not unique to each installation, but instead are the same across all deployments, which [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"footnotes":""},"categories":[1],"tags":[],"vendor":[],"product":[],"attack_vector":[],"asset_type":[],"severity":[],"exploit_status":[],"class_list":["post-76152","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/posts\/76152","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/comments?post=76152"}],"version-history":[{"count":11,"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/posts\/76152\/revisions"}],"predecessor-version":[{"id":83013,"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/posts\/76152\/revisions\/83013"}],"wp:attachment":[{"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/media?parent=76152"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/categories?post=76152"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/tags?post=76152"},{"taxonomy":"vendor","embeddable":true,"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/vendor?post=76152"},{"taxonomy":"product","embeddable":true,"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/product?post=76152"},{"taxonomy":"attack_vector","embeddable":true,"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/attack_vector?post=76152"},{"taxonomy":"asset_type","embeddable":true,"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/asset_type?post=76152"},{"taxonomy":"severity","embeddable":true,"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/severity?post=76152"},{"taxonomy":"exploit_status","embeddable":true,"href":"https:\/\/www.ameeba.com\/blog\/wp-json\/wp\/v2\/exploit_status?post=76152"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}