CVE-2017-6894

HIGH

FlexNet Manager Suite <2015 R2 SP3 - Privilege Escalation

Title source: llm

Description

A vulnerability exists in FlexNet Manager Suite releases 2015 R2 SP3 and earlier (including FlexNet Manager Platform 9.2 and earlier) that affects the inventory gathering components and can be exploited by local users to perform certain actions with elevated privileges on the local system.

References (1)

Core 1

Core References

Vendor Advisory

https://community.flexera.com/t5/FlexNet-Manager-Knowledge-Base/A-vulnerability-exists-in-FlexNet-Manager-Suite-release-2015-R2/ta-p/1891

Scores

CVSS v3 7.8

EPSS 0.0017

EPSS Percentile 6.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-269

Status published

Products (3)

flexera/flexnet_manager < 9.2

flexera/flexnet_manager_suite_2015

flexera/flexnet_manager_suite_2015 r2 (4 CPE variants)

Published Mar 29, 2023

Tracked Since Feb 18, 2026