CVE-2018-20032

A Denial of Service vulnerability related to message decoding in lmgrd and vendor daemon components of FlexNet Publisher version 11.16.1.0 and earlier allows a remote attacker to send a combination of messages to lmgrd or the vendor daemon, causing the heartbeat between lmgrd and the vendor daemon to stop, and the vendor daemon to shut down.
Configurations

Configuration 1 (hide)

cpe:2.3:a:flexera:flexnet_publisher:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:a:oracle:communications_lsms:*:*:*:*:*:*:*:*

History

11 Apr 2022, 20:22

Type Values Removed Values Added
CWE CWE-20 NVD-CWE-noinfo
CPE cpe:2.3:a:oracle:communications_lsms:*:*:*:*:*:*:*:*
References (MISC) https://www.oracle.com/security-alerts/cpuoct2021.html - (MISC) https://www.oracle.com/security-alerts/cpuoct2021.html - Patch, Third Party Advisory
References (CONFIRM) https://secuniaresearch.flexerasoftware.com/advisories/85979/ - Vendor Advisory (CONFIRM) https://secuniaresearch.flexerasoftware.com/advisories/85979/ - Not Applicable, Vendor Advisory
References (BID) http://www.securityfocus.com/bid/109155 - (BID) http://www.securityfocus.com/bid/109155 - Broken Link

20 Oct 2021, 11:15

Type Values Removed Values Added
References
  • (MISC) https://www.oracle.com/security-alerts/cpuoct2021.html -

Information

Published : 2019-03-21 21:29

Updated : 2024-02-04 20:20


NVD link : CVE-2018-20032

Mitre link : CVE-2018-20032

CVE.ORG link : CVE-2018-20032


JSON object : View

Products Affected

oracle

  • communications_lsms

flexera

  • flexnet_publisher