PrinterLogic Print Management Software fails to validate the management portal SSL certificates
CVE-2018-5408

7.4HIGH

Key Information:

Vendor: Printerlogic
Status: Management Software
Vendor: CVE Published:; 8 May 2019

🔔 Create Printerlogic Vulnerability Alert

What is CVE-2018-5408?

The PrinterLogic Print Management software, versions up to and including 18.3.1.96, does not validate, or incorrectly validates, the PrinterLogic management portal's SSL certificate. When a certificate is invalid or malicious, it might allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack. The software might connect to a malicious host while believing it is a trusted host, or the software might be deceived into accepting spoofed data that appears to originate from a trusted host.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Management Software 8.3.1.96

References

https://kb.cert.org/vuls/id/169249/

third-party-advisoryx_refsource_CERT-VN

http://www.securityfocus.com/bid/108285

vdb-entryx_refsource_BID

CVSS V3.1

Score:

7.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 8, 2019
Vulnerability Reserved
Jan 12, 2018

JSON

Printerlogic

What is CVE-2018-5408?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.