Flexnet Publisher Security Vulnerabilities and Issues — Flexnet Publisher CVE List

FlexeraFlexnet Publisher

9 matches found

CVE•added 2019/02/25 8:0 p.m.•141 views

CVE-2018-20033

FlexNet Publisher (lmgrd and vendor daemon) versions 11.16.1.0 and earlier are vulnerable to a memory corruption path that can cause the heartbeat to fail and the vendor daemon to shut down, with remote code execution possible. Public advisories (NVD, ICSA-19-192-05/07, CNVD) confirm CVE-2018-200...

9.8CVSS9.5AI score0.03669EPSS

CVE•added 2019/03/21 8:47 p.m.•84 views

CVE-2018-20031

CVE-2018-20031 affects FlexNet Publisher (lmgrd and vendor daemon) prior to version 11.16.2. It is a denial of service vulnerability caused by improper input validation enabling a remote attacker to send a crafted sequence of messages to disrupt the heartbeat between lmgrd and the vendor daemon, ...

7.5CVSS8.3AI score0.02242EPSS

CVE•added 2019/03/21 8:52 p.m.•80 views

CVE-2018-20032

The CVE-2018-20032 entry tracks a Denial-of-Service in FlexNet Publisher’s lmgrd and vendor daemon components (version 11.16.1.0 and earlier). Exploitation involves sending crafted messages to break the heartbeat between lmgrd and the vendor daemon, causing the daemon to shut down. Public documen...

7.5CVSS8.3AI score0.02242EPSS

CVE•added 2019/03/21 8:54 p.m.•72 views

CVE-2018-20034

CVE-2018-20034 affects FlexNet Publisher up to version 11.16.1.0 (lmgrd and vendor daemon). The vulnerability arises from adding an item to a list, causing heartbeat to stop and the vendor daemon to shut down (DoS). Mitigation: upgrade to FlexNet Publisher 11.16.2.0 or newer (2018 R4+). No public...

7.5CVSS8.3AI score0.02803EPSS

CVE•added 2020/04/21 2:20 p.m.•53 views

CVE-2019-8960

CVE-2019-8960 affects Flexera FlexNet Publisher lmadmin.exe (version 11.16.2). The vulnerability stems from the message reading function, which can recursively call itself and, when a specific flag is set in the initial message but no second message arrives, return an unexpected value that causes...

7.5CVSS7.5AI score0.01276EPSS

CVE•added 2020/04/21 2:20 p.m.•52 views

CVE-2019-8961

Flexera FlexNet Publisher lmadmin.exe 11.16.2 is affected by a Denial of Service vulnerability caused by a message reading function that recursively calls itself, leading to stack exhaustion when handling certain messages. An unauthenticated remote attacker can trigger this by sending crafted mes...

7.5CVSS7.5AI score0.01763EPSS

CVE•added 2021/09/17 5:45 p.m.•51 views

CVE-2020-12080

CVE-2020-12080 affects FlexNet Publisher’s lmadmin.exe 11.16.6. A DoS arises from a crafted message protocol that can crash lmadmin, with network-based access and no authentication required (CVSSv3.1: 7.5 Critical; CVSSv2: 5.0). The available documents confirm the vulnerability and its impact but...

7.5CVSS7.4AI score0.02044EPSS

CVE•added 2023/03/29 12:0 a.m.•45 views

CVE-2019-8963

Summary : CVE-2019-8963 is a DoS in FlexNet Publisher’s lmadmin 11.16.5. The vulnerability arises when a crafted POST request to the web-based lmadmin tool triggers a resource-release error, leading to availability impact. The issue is documented across multiple sources including Red Hat and NVD,...

7.5CVSS7.4AI score0.00654EPSS

CVE•added 2020/07/31 4:55 p.m.•36 views

CVE-2020-12081

CVE-2020-12081 corresponds to an information-disclosure vulnerability in FlexNet Publisher lmadmin.exe 11.14.0.2. The web portal link can be abused to access system files or other important files on the host. The connected sources do not provide explicit exploit details (no in-the-wild exploitati...

7.5CVSS7.1AI score0.0109EPSS