CVE-2011-4135Path Traversal in Flexnet Publisher

CWE-22Path Traversal3 documents3 sources
Severity
10.0CRITICALNVD
EPSS
62.2%
top 1.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Flexerasoftware Flexnet Publisher
Timeline
PublishedJan 19
Latest updateMay 17

Description

Multiple directory traversal vulnerabilities in lmgrd in Flexera FlexNet Publisher 11.10 (aka FlexNet License Server Manager) allow remote attackers to execute arbitrary code via vectors related to save, rename, and load operations on log files. NOTE: this might overlap CVE-2011-1389.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

Patches

Patch: www.flexerasoftware.comPatch: www.flexerasoftware.com

🔴Vulnerability Details

2
GHSA
GHSA-mr3r-vxqv-xfwv: Multiple directory traversal vulnerabilities in lmgrd in Flexera FlexNet Publisher 112022-05-17
CVEList
CVE-2011-4135: Multiple directory traversal vulnerabilities in lmgrd in Flexera FlexNet Publisher 112012-01-19
CVE-2011-4135 — Path Traversal in Flexnet Publisher | cvebase