← Back

CVE-2017-6894

nvd nist
Published: Mar 29, 2023Modified: Feb 18, 2025

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

A vulnerability exists in FlexNet Manager Suite releases 2015 R2 SP3 and earlier (including FlexNet Manager Platform 9.2 and earlier) that affects the inventory gathering components and can be exploited by local users to perform certain actions with elevated privileges on the local system.

Affected (6)

Flexera
2 products
Flexnet Manager
Flexnet Manager Suite 2015
Configuration A
6 vulnerable
Vulnerable SoftwareAffected Versions
Flexnet Manager
Up to 9.2
Flexera
Flexnet Manager Suite 2015
All versions
Flexnet Manager Suite 2015
Version r2
Flexnet Manager Suite 2015
Version r2 sp1
Flexnet Manager Suite 2015
Version r2 sp2
Flexnet Manager Suite 2015
Version r2 sp3

Related CWEs

CWE-269
Improper Privilege Management
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References (2)

Source: PSIRT-CNA@flexerasoftware.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.