CVE-2017-6885
Published May 16, 2017
Last updated 5 years ago
Overview
- Description
- An error when handling certain external commands and services related to the FlexNet Inventory Agent and FlexNet Beacon of the Flexera Software FlexNet Manager Suite 2017 before 2017 R1 and 2014 R3 through 2016 R1 SP1 can be exploited to gain elevated privileges.
- Source
- PSIRT-CNA@flexerasoftware.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.0
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:flexerasoftware:flexnet_manager_suite:2014:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1893249B-393C-4138-A83E-94DBA1CAAF75"
},
{
"criteria": "cpe:2.3:a:flexerasoftware:flexnet_manager_suite:2015:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "85F8EB93-DA69-42A1-93E1-DE97D58301E0"
},
{
"criteria": "cpe:2.3:a:flexerasoftware:flexnet_manager_suite:2016:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6A77E6F8-A668-41B4-B12F-40F297EEDBBB"
},
{
"criteria": "cpe:2.3:a:flexerasoftware:flexnet_manager_suite:2017:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7B4C52C7-6546-4272-926B-CADBED1E1AC1"
}
],
"operator": "OR"
}
]
}
]