Vulnerability Details CVE-2018-20032
A Denial of Service vulnerability related to message decoding in lmgrd and vendor daemon components of FlexNet Publisher version 11.16.1.0 and earlier allows a remote attacker to send a combination of messages to lmgrd or the vendor daemon, causing the heartbeat between lmgrd and the vendor daemon to stop, and the vendor daemon to shut down.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 78.2%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- http://www.securityfocus.com/bid/109155
- https://secuniaresearch.flexerasoftware.com/advisories/85979/
- https://www.oracle.com/security-alerts/cpuoct2021.html
- http://www.securityfocus.com/bid/109155
- https://secuniaresearch.flexerasoftware.com/advisories/85979/
- https://www.oracle.com/security-alerts/cpuoct2021.html
Products affected by CVE-2018-20032
-
cpe:2.3:a:flexera:flexnet_publisher:10.1.3
-
cpe:2.3:a:flexera:flexnet_publisher:10.8.0.1
-
cpe:2.3:a:flexera:flexnet_publisher:10.8.0.7
-
cpe:2.3:a:flexera:flexnet_publisher:10.8.10
-
cpe:2.3:a:flexera:flexnet_publisher:10.8.5
-
cpe:2.3:a:flexera:flexnet_publisher:10.8.6
-
cpe:2.3:a:flexera:flexnet_publisher:10.8.7
-
cpe:2.3:a:flexera:flexnet_publisher:10.8.8
-
cpe:2.3:a:flexera:flexnet_publisher:10.8.9
-
cpe:2.3:a:flexera:flexnet_publisher:11.10.0
-
cpe:2.3:a:flexera:flexnet_publisher:11.10.1
-
cpe:2.3:a:flexera:flexnet_publisher:11.11.0
-
cpe:2.3:a:flexera:flexnet_publisher:11.11.1
-
cpe:2.3:a:flexera:flexnet_publisher:11.12.0
-
cpe:2.3:a:flexera:flexnet_publisher:11.12.1
-
cpe:2.3:a:flexera:flexnet_publisher:11.12.1.5
-
cpe:2.3:a:flexera:flexnet_publisher:11.13.0
-
cpe:2.3:a:flexera:flexnet_publisher:11.13.0.2
-
cpe:2.3:a:flexera:flexnet_publisher:11.13.1
-
cpe:2.3:a:flexera:flexnet_publisher:11.13.1.1
-
cpe:2.3:a:flexera:flexnet_publisher:11.13.1.4
-
cpe:2.3:a:flexera:flexnet_publisher:11.14.0
-
cpe:2.3:a:flexera:flexnet_publisher:11.14.0.2
-
cpe:2.3:a:flexera:flexnet_publisher:11.14.1
-
cpe:2.3:a:flexera:flexnet_publisher:11.15.0
-
cpe:2.3:a:flexera:flexnet_publisher:11.15.1
-
cpe:2.3:a:flexera:flexnet_publisher:11.16.0
-
cpe:2.3:a:flexera:flexnet_publisher:11.16.1
-
cpe:2.3:a:flexera:flexnet_publisher:11.16.1.0
-
cpe:2.3:a:flexera:flexnet_publisher:11.3
-
cpe:2.3:a:flexera:flexnet_publisher:11.4
-
cpe:2.3:a:flexera:flexnet_publisher:11.4.1
-
cpe:2.3:a:flexera:flexnet_publisher:11.5
-
cpe:2.3:a:flexera:flexnet_publisher:11.6
-
cpe:2.3:a:flexera:flexnet_publisher:11.6.1
-
cpe:2.3:a:flexera:flexnet_publisher:11.7
-
cpe:2.3:a:flexera:flexnet_publisher:11.8
-
cpe:2.3:a:flexera:flexnet_publisher:11.9
-
cpe:2.3:a:flexera:flexnet_publisher:11.9.1
-
cpe:2.3:a:oracle:communications_lsms:13.1
-
cpe:2.3:a:oracle:communications_lsms:13.2
-
cpe:2.3:a:oracle:communications_lsms:13.3
-
cpe:2.3:a:oracle:communications_lsms:13.4