Published: 21/03/2019 Updated: 15/07/2019
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

A Denial of Service vulnerability related to message decoding in lmgrd and vendor daemon components of FlexNet Publisher version and previous versions allows a remote malicious user to send a combination of messages to lmgrd or the vendor daemon, causing the heartbeat between lmgrd and the vendor daemon to stop, and the vendor daemon to shut down.

Vulnerability Trend

Affected Products

Vendor Product Versions
FlexeraFlexnet Publisher11.16.1.0

Vendor Advisories

Multiple Denial-of-Service vulnerabilities have been identified in Citrix License Server for Windows and VPX that, when exploited, could result in an attacker being able to force the vendor service to shutdown These vulnerabilities have been assigned the following CVE numbers: • CVE-2018-20031:  A Denial of Service vulnerabilit ...