A Denial of Service vulnerability related to message decoding in lmgrd and vendor daemon components of FlexNet Publisher version 11.16.1.0 and earlier allows a remote attacker to send a combination of messages to lmgrd or the vendor daemon, causing the heartbeat between lmgrd and the vendor daemon to stop, and the vendor daemon to shut down.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/109155 | Broken Link |
https://secuniaresearch.flexerasoftware.com/advisories/85979/ | Not Applicable Vendor Advisory |
https://www.oracle.com/security-alerts/cpuoct2021.html | Patch Third Party Advisory |
Configurations
History
11 Apr 2022, 20:22
Type | Values Removed | Values Added |
---|---|---|
CWE | NVD-CWE-noinfo | |
CPE | cpe:2.3:a:oracle:communications_lsms:*:*:*:*:*:*:*:* | |
References | (MISC) https://www.oracle.com/security-alerts/cpuoct2021.html - Patch, Third Party Advisory | |
References | (CONFIRM) https://secuniaresearch.flexerasoftware.com/advisories/85979/ - Not Applicable, Vendor Advisory | |
References | (BID) http://www.securityfocus.com/bid/109155 - Broken Link |
20 Oct 2021, 11:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2019-03-21 21:29
Updated : 2024-02-04 20:20
NVD link : CVE-2018-20032
Mitre link : CVE-2018-20032
CVE.ORG link : CVE-2018-20032
JSON object : View
Products Affected
oracle
- communications_lsms
flexera
- flexnet_publisher
CWE