Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-32232: Client Release Notes

An issue was discovered in Vasion PrinterLogic Client for Windows before 25.0.0.836. During client installation and repair, a PrinterLogic binary is called by the installer to configure the device. This window is not hidden, and is running with elevated privileges. A standard user can break out of this window, obtaining a full SYSTEM command prompt window. This results in complete compromise via arbitrary SYSTEM code execution (elevation of privileges).

CVE
Open in Source
#web#mac#windows#perl#ldap#auth#chrome

Windows Build 25.0.0.930 - 7/6/23

  • An issue where the Windows Client sent print job info with a blank user when checking quota was resolved. - PI-50558

  • An issue causing the change not to be recognized when changing between uppercase/lowercase letters in the SNMP community name on the Port tab of a printer object has been resolved. - PI-47932

Windows Build 25.0.0.896 - 5/2/23

  • An issue with Quota Management causing an LDAP user to not be identified correctly when IdP was disabled has been resolved. This was allowing end-users to print to a secure printer when they were over their set quota. - PI-42942

Windows Build 25.0.0.888 - 4/5/23

  • An issue when performing a migration that was causing print mappings to not convert printers to Direct-IP has been resolved. - PI-43675

Windows Build 25.0.0.882 - 3/29/23

  • An issue that was causing some customers to experience extreme increases in traffic during off hours, and would sometimes cause users to receive an error message about the client service being unavailable when they try to install a printer from the self-service portal has been resolved. - PI-47379

  • An issue where non lower case home urls were causing off network jobs to fail with a 400 message has been resolved. - PI-47505

Windows Build 25.0.0.874 - 3/14/23

  • An issue when updating the service manager that caused it to stop functioning, which then caused all services to stop, has been resolved. - PI-47191

Windows Build 25.0.0.870 - 3/9/23

  • An issue when using Off-Network Printing with Direct IP Primary set, causing printing to a pull printer to time out and cause a delay has been resolved. - PI-46573

Windows Build 25.0.0.864 - 2/24/23

  • Corrected an issue with Off-Network Printing IdP authentication that was causing the print job to never reach the Internal Routing Service. - PI-46715

Windows Build 25.0.0.857 - 2/16/23

  • An issue causing the IDP authentication app to not update correctly causing IDP logins to fail has been resolved. - PI-46048

  • Added improvements for the clients ability to remember/restore end-user default printers in non-persistent virtualized environments. - PI-46167

Windows Build 25.0.0.836 - 2/10/23

  • Minor update to custom actions in MSI installer. PI-46396

  • An issue causing document page counts to be multiplied by two, causing inaccurate total page counts has been resolved. - PI-43972

Windows Build 25.0.0.827 - 2/2/23

  • Minor security fixes.

  • Corrected an issue where IDP information was not associated with print stats from held/released print jobs.

  • Corrected a label where windows 11 machines would show as windows 10 in the logs.

Windows Build 25.0.0.810 - 1/19/23

  • An issue when logging into an IdP using a username containing an apostrophe causing the login to fail has been resolved. - PI-44304
  • An issue when using Off-Network Printing with a self-hosted gateway causing print jobs to fail has been resolved. - PI-43523
  • An issue when using ONP printing to a pull printer without having a release printer installed causing the print job to fail has been resolved. - PI-44448

Windows Build 25.0.0.796 - 1/3/23

  • An issue when using Printer names with the “&” character causing issues with refreshing configurations and profile changes has been resolved. - PI-37851
  • An issue when using printer names with special character “é” causing the printer to not install has been resolved. - PI-42034
  • An issue with the automatic client update not working when item level targeting is applied has been resolved. - PI-41825

Windows Build 25.0.0.788 - 12/15/22

  • An issue for some users in some environments, that they would appear to successfully log in to the client with IDP, but it would not show that they are logged in has been resolved. - PI-44946

Windows Build 25.0.0.786 - 12/9/22

  • An issue causing the client to lose authentication when switching between home URLs has been resolved. - PI-44156

  • An issue when using a virtual environment, causing the Windows client to not check in causing end-users to be unable to install printers has been resolved. - PI-43420

Windows Build 25.0.0.772 - 11/24/22

  • Corrected an issue where occasionally a remote session into a VM will report the incorrect IP address for the end-point connection… - PI-28416

Windows Build 25.0.0.769 - 11/15/22

  • Corrected an issue that was caused if the Client was installed using a command prompt but choosing not to also install the extension. If later deciding to manually install the extension, the extension was not working properly. - PI-43690

Windows Build 25.0.0.765 - 11/11/22

  • Corrected an issue where sometimes clients would require reauthorization after visiting the self-service portal.

    For existing workstations experiencing this issue, you will need to clear the ‘classes’ registry key and reauthorize the client. This can be done by uninstalling the client and reinstalling with an auth code on the command line, or manually typing in an auth code when prompted. - PI-42687

Windows Build 25.0.0.756 - 10/29/22

  • Added a client override to handle a specific condition where Chromebooks are connecting to a Windows server (RDS or VDI) that allows the ‘hostname’ detected in the virtual session to be treated as an AssetID or a Serial number or both. This override will assist with deployments. - PI-41633

Windows Build 25.0.0.751 - 10/26/22

  • Corrected an issue where a performance mechanism was incorrectly reducing the responsiveness of release messages. - PI-43285
  • Corrected an issue where the PJ monitor thread was being stopped and started repeatedly. - PI-28046

Windows Build 25.0.0.727

  • Updates were made to give the ability to turn off automatic browser extension installation when updating/installing the client. Information on parameters to control this can be found on the Install Client on Windows documentation. - PI-36841

Windows Build 25.0.0.715

  • Several updates were made to resolve issues when running in RDS mode. - PI-40969
    • Resolved an issue with being unable to create printers or set default printers in RDS mode.
    • Resolved an issue when a service client was running on an RDS server, it would attempt to run a Service Client in every session.
  • Corrected several minor performance issues.

Windows Build 25.0.0.704

  • An issue causing the need to reinstall an authorization code at random has been resolved. - PI-39384
  • When in RDS mode, an issue causing the SNMP monitor process to start in each user session has been resolved. - PI-40726
  • A request to remove the “Refreshing Client” message when a client refresh occurs has been completed. - PI-39388

Windows Build 25.0.0.673

  • An issue causing the service manager to not start when installing a fresh client has been resolved. - PI-39002
  • An issue causing printers to be removed from Self-service Portal when a login to the Admin Console is performed on the same browser session has been resolved. - PI-18993

Windows Build 25.0.0.672

  • An issue causing a prompt to reinstall the edge extension when launching a published app in Citrix TS session has been resolved. - PI-36973
  • An issue causing the desktop client login screen to open in two browser windows has been resolved. - PI-34725
  • An issue causing a buildup of npPrinterInstallerClientPlugin32.exe processes has been resolved. - PI-38371
  • An issue when in a Citrix environment in RDS mode to identify held print jobs as the domain user attribute instead of the IdP user attribute has been resolved. - PI-36944
  • An issue when using Citrix in RDS mode causing printers from previous sessions to still be visible when previously removed has been resolved. - PI-36436

Windows Build 25.0.0.603

  • An issue causing stress to the web server when a large number of clients come online at once has been resolved.
  • Added ability to deploy printers based on MAC address of thin clients in VDI environment.

Windows Build 25.0.0.590

  • An issue causing RDS mode to not be reinforced has been resolved. - PI-36436
  • Udates to assist with PIV/CAC users were implemented.
  • An issue causing the Edge extension to not work after an update to a new client has been resolved. - PI-32790

Windows Build 25.0.0.540

  • An issue causing the portal pages to not load when using IE 11 has been resolved. - PI-31743
  • In issue causing an error when upgrading the client has been resolved. - PI-31021
  • An error causing the wrong address to be returned from the registry has been resolved. - PI-30213
  • An issue causing secure release print jobs with Chinese characters in the title to not release has been resolved. - PI-30213

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE