7.8
CVE-2017-6894
- EPSS 0.03%
- Published 29.03.2023 21:15:07
- Last modified 18.02.2025 18:15:08
- Source PSIRT-CNA@flexerasoftware.com
- Teams watchlist Login
- Open Login
A vulnerability exists in FlexNet Manager Suite releases 2015 R2 SP3 and earlier (including FlexNet Manager Platform 9.2 and earlier) that affects the inventory gathering components and can be exploited by local users to perform certain actions with elevated privileges on the local system.
Data is provided by the National Vulnerability Database (NVD)
Flexera ≫ Flexnet Manager Version <= 9.2
Flexera ≫ Flexnet Manager Suite 2015 Version-
Flexera ≫ Flexnet Manager Suite 2015 Versionr2 Update-
Flexera ≫ Flexnet Manager Suite 2015 Versionr2 Updatesp1
Flexera ≫ Flexnet Manager Suite 2015 Versionr2 Updatesp2
Flexera ≫ Flexnet Manager Suite 2015 Versionr2 Updatesp3
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.03% | 0.044 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-269 Improper Privilege Management
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.