6.5

CVSS3.1

CVE-2025-25634 -

A vulnerability has been found in Tenda AC15 15.03.05.19 in the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manipulation of the argument src leads to stack-based buffer overflow.

📅 Published: March 5, 2025, midnight 🔄 Last Modified: April 10, 2025, 6:17 p.m.

9.8

CVSS3.1

CVE-2025-27672 -

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows OAUTH Security Bypass OVE-20230524-0016.

📅 Published: March 5, 2025, midnight 🔄 Last Modified: April 1, 2025, 8:45 p.m.

9.8

CVSS3.1

CVE-2025-27682 -

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 1.0.735 Application 20.0.1330 allows Insecure Log Permissions V-2022-005.

📅 Published: March 5, 2025, midnight 🔄 Last Modified: Nov. 3, 2025, 8:18 p.m.

9.8

CVSS3.1

CVE-2025-27641 -

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.951 Application 20.0.2368 allows Unauthenticated APIs for Single-Sign On V-2024-009.

📅 Published: March 5, 2025, midnight 🔄 Last Modified: Nov. 3, 2025, 8:18 p.m.

9.8

CVSS3.1

CVE-2025-27674 -

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Hardcoded IdP Key V-2023-006.

📅 Published: March 5, 2025, midnight 🔄 Last Modified: Nov. 3, 2025, 8:18 p.m.

9.8

CVSS3.1

CVE-2025-27662 -

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Password in URL OVE-20230524-0005.

📅 Published: March 5, 2025, midnight 🔄 Last Modified: April 1, 2025, 8:49 p.m.

9.8

CVSS3.1

CVE-2025-27648 -

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.913 Application 20.0.2253 allows Cross Tenant Password Exposure V-2024-003.

📅 Published: March 5, 2025, midnight 🔄 Last Modified: Nov. 3, 2025, 8:18 p.m.

5.4

CVSS3.1

CVE-2025-27660 -

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Cross Site Scripting OVE-20230524-0003.

📅 Published: March 5, 2025, midnight 🔄 Last Modified: April 1, 2025, 8:52 p.m.

9.8

CVSS3.1

CVE-2025-27670 -

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Insufficient Signature Validation OVE-20230524-0014.

📅 Published: March 5, 2025, midnight 🔄 Last Modified: April 1, 2025, 8:48 p.m.

9.8

CVSS3.1

CVE-2025-27666 -

Vasion Print (formerly PrinterLogic) before Virtual Appliance Host 22.0.843 Application 20.0.1923 allows Insufficient Authorization Checks OVE-20230524-0010.

📅 Published: March 5, 2025, midnight 🔄 Last Modified: April 1, 2025, 8:49 p.m.

CVE Authored by @aydinnyunus

6.5

CVE-2025-25634 -

9.8

CVE-2025-27672 -

9.8

CVE-2025-27682 -

9.8

CVE-2025-27641 -

9.8

CVE-2025-27674 -

9.8

CVE-2025-27662 -

9.8

CVE-2025-27648 -

5.4

CVE-2025-27660 -

9.8

CVE-2025-27670 -

9.8

CVE-2025-27666 -