Login Sign Up

CVE-2025-5098

9.1 CRITICAL
Authentication Bypass

📋 TL;DR

The PrinterShare Android application allows attackers to capture Gmail authentication tokens, enabling unauthorized access to users' Gmail accounts. This affects Android users who have installed the vulnerable PrinterShare application and linked their Gmail account.

💻 Affected Systems

Products:
  • PrinterShare Android application
Versions: Specific vulnerable versions not specified in provided references, but likely multiple versions before patch.
Operating Systems: Android
Default Config Vulnerable: ⚠️ Yes
Notes: Requires user to have linked Gmail account with PrinterShare application.

📦 What is this software?

Printershare by Dynamixsoftware

View all CVEs affecting Printershare →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete compromise of Gmail account leading to data theft, identity theft, and unauthorized access to linked services.

🟠

Likely Case

Unauthorized access to Gmail emails, contacts, and potentially other Google services using the stolen token.

🟢

If Mitigated

Limited impact if token expiration is enforced or multi-factor authentication prevents token reuse.

🌐 Internet-Facing: HIGH - Attackers can exploit this remotely if they can intercept or capture tokens.
🏢 Internal Only: LOW - This is primarily an Android application vulnerability affecting individual users.

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploitation requires capturing authentication tokens, which could be done through various interception methods.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Not specified in provided references, but vendor likely released update.

Vendor Advisory: Not provided in references

Restart Required: No

Instructions:

1. Open Google Play Store 2. Search for PrinterShare 3. Update to latest version 4. Revoke Gmail access from PrinterShare in Google account settings

🔧 Temporary Workarounds

Revoke PrinterShare Gmail Access

all

Remove PrinterShare's access to Gmail account through Google security settings

Navigate to https://myaccount.google.com/permissions and remove PrinterShare

Uninstall PrinterShare

android

Remove vulnerable application from Android device

Settings > Apps > PrinterShare > Uninstall

🧯 If You Can't Patch

  • Disconnect Gmail account from PrinterShare application
  • Monitor Gmail account for suspicious activity and enable Google security alerts

🔍 How to Verify

Check if Vulnerable:

Check if PrinterShare is installed and has Gmail permissions enabled in Google account settings.

Check Version:

Open Play Store > My apps & games > Updates available (check PrinterShare)

Verify Fix Applied:

Verify PrinterShare is updated to latest version in Play Store and Gmail permissions are revoked.

📡 Detection & Monitoring

Log Indicators:

  • Unusual Gmail access from new locations or devices
  • Failed login attempts followed by token-based access

Network Indicators:

  • Unexpected authentication token requests or transmissions

SIEM Query:

Not applicable - this is primarily an endpoint/application level vulnerability

📊 Metadata

CVE ID: CVE-2025-5098
CVSS v3 Score: 9.1 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
CWE: CWE-200
EPSS Score: 0.04% exploit probability (12.2th percentile)
Published: May 23, 2025
Last Updated: October 8, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-5098, you might also want to check these:

CVE-2025-61481 10.0

MikroTik RouterOS and SwOS expose their WebFig management interface over unencrypted HTTP by default...

Same vulnerability type (CWE-200)
CVE-2025-53624 10.0

The Docusaurus gists plugin versions before 4.0.0 expose GitHub Personal Access Tokens in client-sid...

Same vulnerability type (CWE-200)
CVE-2023-49103 10.0

This vulnerability in ownCloud's graphapi app exposes PHP configuration details (phpinfo) via a thir...

Same vulnerability type (CWE-200)