256 matches found
EUVD-2024-27606
Malicious code in bioql PyPI...
EUVD-2021-28544
Malicious code in bioql PyPI...
CVE-2021-41525
An issue related to modification of otherwise restricted files through a locally authenticated attacker exists in FlexNet inventory agent and inventory beacon versions 2020 R2.5 and prior...
CVE-2020-12080
A Denial of Service vulnerability has been identified in FlexNet Publisher's lmadmin.exe version 11.16.6. A certain message protocol can be exploited to cause lmadmin to crash...
CVE-2020-12081
An information disclosure vulnerability has been identified in FlexNet Publisher lmadmin.exe 11.14.0.2. The web portal link can be used to access to system files or other important files on the system...
CVE-2019-8961
A Denial of Service vulnerability related to stack exhaustion has been identified in FlexNet Publisher lmadmin.exe 11.16.2. Because the message reading function calls itself recursively given a certain condition in the received message, an unauthenticated remote attacker can repeatedly send...
CVE-2011-4134
Heap-based buffer overflow in lmadmin in Flexera FlexNet Publisher 11.10 aka FlexNet License Server Manager allows remote attackers to execute arbitrary code via a crafted 0x2f packet...
CVE-2019-8963
A Denial of Service DoS vulnerability was discovered in FlexNet Publisher's lmadmin 11.16.5, when doing a crafted POST request on lmadmin using the web-based tool...
CVE-2019-8960
A Denial of Service vulnerability related to command handling has been identified in FlexNet Publisher lmadmin.exe version 11.16.2. The message reading function used in lmadmin.exe can, given a certain message, call itself again and then wait for a further message. With a particular flag set in t...
CVE-2011-4135
Multiple directory traversal vulnerabilities in lmgrd in Flexera FlexNet Publisher 11.10 aka FlexNet License Server Manager allow remote attackers to execute arbitrary code via vectors related to save, rename, and load operations on log files. NOTE: this might overlap CVE-2011-1389...
CVE-2024-2658
A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to 2024 R1 11.19.6.0 allows the OpenSSL configuration file to load from a non-existent directory. An unauthorized, locally authenticated user with low privileges can potentially create the directory and load a specially crafted...
CVE-2024-2658 Local privilege escalation in FlexNet Publisher
A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to 2024 R1 11.19.6.0 allows the OpenSSL configuration file to load from a non-existent directory. An unauthorized, locally authenticated user with low privileges can potentially create the directory and load a specially crafted...
CVE-2024-2658 Local privilege escalation in FlexNet Publisher
A misconfiguration in lmadmin.exe of FlexNet Publisher versions prior to 2024 R1 11.19.6.0 allows the OpenSSL configuration file to load from a non-existent directory. An unauthorized, locally authenticated user with low privileges can potentially create the directory and load a specially crafted...
CVE-2024-2658
CVE-2024-2658 describes a local privilege-escalation flaw in Flexera FlexNet Publisher prior to 2024 R1 (11.19.6.0) caused by a lmadmin.exe misconfiguration that allows the OpenSSL configuration file to load from a non-existent directory. An authenticated, low-privilege local user could create th...
Flexera FlexNet Publisher 安全漏洞
Flexera FlexNet Publisher FLEXlm is a software license management core component of the Entitlement Relationship Management Solution from Flexera, USA. The product provides software and hardware manufacturers with the ability to price, package and customize software license terms. A security...
The vulnerability of the openssl.conf configuration file of the FlexNet Publisher licensing management software allows a perpetrator to increase their privileges and execute arbitrary code.
The vulnerability of the openssl.conf configuration file of the FlexNet Publisher licensing management software is related to an uncontrolled element in the search process. Exploiting this vulnerability allows a perpetrator to enhance their privileges and execute arbitrary code...
Flexera FlexNet Publisher < 11.19.6 Privilege Escalation
A privilege escalation vulnerability exists in Flexera FlexNet Publisher due to an uncontrolled search path element. An authenticated, local attacker can exploit this, to gain elevated privileges access to the system. Note that Nessus has not tested for this issue but has instead relied only on t...
Vulnerability fixed in Flexera Software FlexNet Publisher
Flexera Software has fixed a vulnerability in FlexNet Publisher. A local malicious person could exploit the vulnerability to grant itself elevated privileges and execute code with elevated privileges. To exploit the vulnerability, a malicious party must load a specially prepared SSL configuration...
Flexera Software FlexNet Publisher Uncontrolled Search Path Element Local Privilege Escalation Vulnerability
This vulnerability allows local attackers to escalate privileges on affected installations of Flexera Software FlexNet Publisher. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within t...
Rockwell FactoryTalk Activation Manager < 4.02 Buffer Overflow
The version of Rockwell FactoryTalk Activation Manager installed on the remote Windows host is prior to 4.02. It is, therefore, affected by a vulnerability. - A custom string copying function of the license server manager in FlexNet Publisher does not use proper bounds checking on incoming data,...