Flexera, Revenera and Snow Software CVE Publications
Flexera Products
Product: Acresso FLEXnet Connect
| Secunia ID | SA31896 |
|---|---|
| References | CVE-2008-1093 |
| Creation Date | 2008-09-18 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | System access |
| Where | From remote |
| Solution Status | Partial Fix |
| CVSS Scores | Base: 6.8, Overall: 5.2 |
| Vector | (AV:A/AC:H/Au:N/C:C/I:C/A:C/E:U/RL:TF/RC:C) |
Product: AdminStudio
| Secunia ID | SA52502 |
|---|---|
| References | CVE-2013-1079 |
| Creation Date | 2013-03-12 |
| Criticality | Highly critical |
| Zero Day | No |
| Impact | System access |
| Where | From remote |
| Solution Status | Vendor Patched |
| CVSS Scores | Base: 10, Overall: 7.4 |
| Vector | (AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C) |
| Secunia ID | SA50383 |
|---|---|
| References | CVE-2011-3174 CVE-2011-2658 CVE-2011-2657 |
| Creation Date | 2012-08-31 |
| Criticality | Highly critical |
| Zero Day | No |
| Impact | System access |
| Where | From remote |
| Solution Status | Vendor Patched |
| CVSS Scores | Base: 10, Overall: 8.3 |
| Vector | (AV:N/AC:L/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C) |
Product: Flexera App Portal 2016, 2017, 2018
| Secunia ID | SA88121 |
|---|---|
| References | CVE-2019-8958 CVE-2019-8959 |
| Creation Date | 2019-03-27 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Manipulation of data, Cross Site Scripting |
| Where | From remote |
| Solution Status | Vendor Patched |
| CVSS Scores | CVSS3 Base: 6.1, Overall: 5.5 |
Product: Flexera FlexNet Manager Platform
| Secunia ID | SA77994 |
|---|---|
| References | CVE-2017-6894 |
| Creation Date | 2017-10-03 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Security Bypass |
| Where | Local system |
| Solution Status | Vendor Patched |
| CVSS Scores | Base: 6.8, Overall: 5.3 |
| Vector | (AV:L/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:OF/RC:C) |
Product: Flexera FlexNet Manager Suite
| Secunia ID | SA77994 |
|---|---|
| References | CVE-2017-6894 |
| Creation Date | 2017-10-03 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Security Bypass |
| Where | Local system |
| Solution Status | Vendor Patched |
| CVSS Scores | Base: 6.8, Overall: 5.3 |
| Vector | (AV:L/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:OF/RC:C) |
| Secunia ID | SA76223 |
|---|---|
| References | CVE-2017-6885 |
| Creation Date | 2017-04-18 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Privilege escalation |
| Where | Local system |
| Solution Status | Vendor Patched |
| CVSS Scores | Base: 6.8, Overall: 5.3 |
| Vector | (AV:L/AC:L/Au:S/C:C/I:C/A:C/E:POC/RL:OF/RC:C) |
Product: Flexera FlexNet Manager Suite 2018, 2019, 2020
| Secunia ID | SA104348 |
|---|---|
| References | CVE-2021-41525 |
| Creation Date | 2021-09-23 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Security Bypass |
| Where | Local system |
| Solution Status | Vendor Patched |
| CVSS Scores | CVSS3 Base: 7.8, Overall: 7 |
Product: InstallShield 2010, 2011
| Secunia ID | SA52502 |
|---|---|
| References | CVE-2013-1079 |
| Creation Date | 2013-03-12 |
| Criticality | Highly critical |
| Zero Day | No |
| Impact | System access |
| Where | From remote |
| Solution Status | Vendor Patched |
| CVSS Scores | Base: 10, Overall: 7.4 |
| Vector | (AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C) |
| Secunia ID | SA50383 |
|---|---|
| References | CVE-2011-3174 CVE-2011-2658 CVE-2011-2657 |
| Creation Date | 2012-08-31 |
| Criticality | Highly critical |
| Zero Day | No |
| Impact | System access |
| Where | From remote |
| Solution Status | Vendor Patched |
| CVSS Scores | Base: 10, Overall: 8.3 |
| Vector | (AV:N/AC:L/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C) |
Product: InstallShield 2012
| Secunia ID | SA52502 |
|---|---|
| References | CVE-2013-1079 |
| Creation Date | 2013-03-12 |
| Criticality | Highly critical |
| Zero Day | No |
| Impact | System access |
| Where | From remote |
| Solution Status | Vendor Patched |
| CVSS Scores | Base: 10, Overall: 7.4 |
| Vector | (AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C) |
Product: InstallShield InstallFromTheWeb
| Secunia ID | SA24285 |
|---|---|
| References | CVE-2007-0320 |
| Creation Date | 2007-02-23 |
| Criticality | Highly critical |
| Zero Day | No |
| Impact | System access |
| Where | From remote |
| Solution Status | No Fix |
| CVSS Scores | n/a |
Product: FlexNet Code Insight
| Secunia ID | n/a |
|---|---|
| References | CVE-2020-12082 |
| Creation Date | 2021-09-28 |
| Criticality | Medium |
| Zero Day | No |
| Impact | Cross-site scripting |
| Where | From remote |
| Solution Status | No Fix |
| Secunia ID | n/a |
|---|---|
| References | CVE-2020-12083 |
| Creation Date | 2021-09-29 |
| Criticality | Critical |
| Zero Day | No |
| Impact | Privilege Escalation |
| Where | From remote |
| Solution Status | Vendor Patched |
Revenera Products
Product: FlexNet Publisher
| Secunia ID | SA125662 |
|---|---|
| References | CVE-2024-2658 |
| Creation Date | 2024-04-02 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Privilege escalation |
| Where | Local system |
| Solution Status | Vendor Patched |
| CVSS Scores | CVSS3 Base: 7.8, Overall: 6.8 |
| Secunia ID | SA94747 |
|---|---|
| References | CVE-2019-8963 CVE-2020-12080 |
| Creation Date | 2020-04-28 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | DoS |
| Where | From local network |
| Solution Status | Vendor Patched |
| CVSS Scores | CVSS3 Base: 6.5, Overall: 5.7 |
| Secunia ID | SA92282 |
|---|---|
| References | CVE-2019-8960 CVE-2019-8961 |
| Creation Date | 2019-11-22 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | DoS |
| Where | From local network |
| Solution Status | Vendor Patched |
| CVSS Scores | CVSS3 Base: 6.5, Overall: 5.7 |
| Secunia ID | SA85979 |
|---|---|
| References | CVE-2018-20034 CVE-2018-20031 CVE-2018-20032 CVE-2018-20033 |
| Creation Date | 2019-01-29 |
| Criticality | Moderately critical |
| Zero Day | No |
| Impact | System access, DoS |
| Where | From local network |
| Solution Status | Vendor Patched |
| CVSS Scores | CVSS3 Base: 8.8, Overall: 7.9 |
| Secunia ID | SA76368 |
|---|---|
| References | CVE-2016-10395 |
| Creation Date | 2017-06-07 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Privilege escalation |
| Where | Local system |
| Solution Status | Vendor Patched |
| CVSS Scores | Base: 6.8, Overall: 5 |
| Vector | (AV:L/AC:L/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C) |
| Secunia ID | SA75061 |
|---|---|
| References | CVE-2017-5571 |
| Creation Date | 2017-02-07 |
| Criticality | Not critical |
| Zero Day | No |
| Impact | Spoofing |
| Where | From remote |
| Solution Status | Vendor Workaround |
| CVSS Scores | Base: 4.3, Overall: 3.3 |
| Vector | (AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:TF/RC:C) |
| Secunia ID | SA69145 |
|---|---|
| References | CVE-2015-8277 |
| Creation Date | 2016-02-23 |
| Criticality | Moderately critical |
| Zero Day | No |
| Impact | System access |
| Where | From local network |
| Solution Status | Vendor Patched |
| CVSS Scores | Base: 8.3, Overall: 6.1 |
| Vector | (AV:A/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C) |
| Secunia ID | SA45615 |
|---|---|
| References | CVE-2011-4135 |
| Creation Date | 2011-08-18 |
| Criticality | Moderately critical |
| Zero Day | No |
| Impact | System access |
| Where | From local network |
| Solution Status | Vendor Patched |
| CVSS Scores | Base: 8.3, Overall: 6.1 |
| Vector | (AV:A/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C) |
| Secunia ID | SA45397 |
|---|---|
| References | CVE-2011-4134 |
| Creation Date | 2011-08-04 |
| Criticality | Moderately critical |
| Zero Day | No |
| Impact | System access |
| Where | From local network |
| Solution Status | Vendor Patched |
| CVSS Scores | Base: 8.3, Overall: 5.8 |
| Vector | (AV:A/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:UR) |
Product: InstallShield 2019, 2020
| Secunia ID | SA105738 |
|---|---|
| References | CVE-2021-41526 |
| Creation Date | 2021-12-18 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Privilege escalation |
| Where | Local system |
| Solution Status | Vendor Patched |
| CVSS Scores | CVSS3 Base: 7.8, Overall: 6.8 |
Product: InstallShield 2021
| Secunia ID | SA140723 |
|---|---|
| References | CVE-2024-7562 |
| Creation Date | 2025-06-13 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Privilege escalation |
| Where | Local system |
| Solution Status | No Fix |
| CVSS Scores | CVSS3 Base: 7.8, Overall: 6.8 |
| Secunia ID | SA126024 |
|---|---|
| References | CVE-2024-3310 |
| Creation Date | 2024-04-17 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Privilege escalation |
| Where | Local system |
| Solution Status | Partial Fix |
| CVSS Scores | CVSS3 Base: 7.8, Overall: 6.9 |
| Secunia ID | SA115284 |
|---|---|
| References | CVE-2023-29080 |
| Creation Date | 2023-04-13 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Privilege escalation |
| Where | Local system |
| Solution Status | Vendor Patched |
| CVSS Scores | CVSS3 Base: 7.8, Overall: 6.8 |
| Secunia ID | SA105738 |
|---|---|
| References | CVE-2021-41526 |
| Creation Date | 2021-12-18 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Privilege escalation |
| Where | Local system |
| Solution Status | Vendor Patched |
| CVSS Scores | CVSS3 Base: 7.8, Overall: 6.8 |
Product: InstallShield 2022
| Secunia ID | SA140723 |
|---|---|
| References | CVE-2024-7562 |
| Creation Date | 2025-06-13 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Privilege escalation |
| Where | Local system |
| Solution Status | No Fix |
| CVSS Scores | CVSS3 Base: 7.8, Overall: 6.8 |
| Secunia ID | SA126024 |
|---|---|
| References | CVE-2024-3310 |
| Creation Date | 2024-04-17 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Privilege escalation |
| Where | Local system |
| Solution Status | Partial Fix |
| CVSS Scores | CVSS3 Base: 7.8, Overall: 6.9 |
| Secunia ID | SA115284 |
|---|---|
| References | CVE-2023-29080 |
| Creation Date | 2023-04-13 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Privilege escalation |
| Where | Local system |
| Solution Status | Vendor Patched |
| CVSS Scores | CVSS3 Base: 7.8, Overall: 6.8 |
Product: InstallShield 2023
| Secunia ID | SA147574 |
|---|---|
| References | CVE-2025-12418 |
| Creation Date | 2025-11-11 |
| Criticality | Not critical |
| Zero Day | No |
| Impact | DoS |
| Where | Local system |
| Solution Status | Vendor Patched |
| CVSS Scores | CVSS3 Base: 5.5, Overall: 4.8 |
| Secunia ID | SA140723 |
|---|---|
| References | CVE-2024-7562 |
| Creation Date | 2025-06-13 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Privilege escalation |
| Where | Local system |
| Solution Status | No Fix |
| CVSS Scores | CVSS3 Base: 7.8, Overall: 6.8 |
| Secunia ID | SA126024 |
|---|---|
| References | CVE-2024-3310 |
| Creation Date | 2024-04-17 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Privilege escalation |
| Where | Local system |
| Solution Status | Partial Fix |
| CVSS Scores | CVSS3 Base: 7.8, Overall: 6.9 |
| Secunia ID | SA123416 |
|---|---|
| References | CVE-2024-14012 CVE-2023-29081 |
| Creation Date | 2024-01-27 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | DoS, Privilege escalation |
| Where | Local system |
| Solution Status | Vendor Patched |
| CVSS Scores | CVSS3 Base: 7.3, Overall: 6.4 |
Snow Software Products
Product: Snow License Manager
| Secunia ID | n/a |
|---|---|
| References | CVE-2023-2679 |
| Creation Date | 2023-05-17 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Data leakage |
| Where | From remote |
| Solution Status | No Fix |
| CVSS Scores | 4.1 |
Product: Snow Inventory Agent
| Secunia ID | n/a |
|---|---|
| References | CVE-2023-7169 |
| Creation Date | 2024-02-08 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | Authentication bypass |
| Where | Local system |
| Solution Status | Upgrade to fix |
| CVSS Scores | 6.0 |
Product: Snow Inventory Agent (Windows)
| Secunia ID | n/a |
|---|---|
| References | CVE-2022-0883 |
| Creation Date | 2022-05-18 |
| Criticality | Less Critical |
| Zero Day | No |
| Impact | File access |
| Where | Local system |
| Solution Status | Upgrade to fix |
| CVSS Scores | 7.3 |
| Secunia ID | n/a |
|---|---|
| References | CVE-2023-3937 |
| Creation Date | 2023-08-11 |
| Criticality | Less Critical |
| Zero Day | No |
| Impact | Cross-site scripting (XSS) |
| Where | Network |
| Solution Status | Upgrade to fix |
| CVSS Scores | 4.8 |
| Secunia ID | n/a |
|---|---|
| References | CVE-2023-3864 |
| Creation Date | 2023-08-11 |
| Criticality | Less Critical |
| Zero Day | No |
| Impact | SQL injection |
| Where | Network |
| Solution Status | Upgrade to fix |
| CVSS Scores | 7.2 |
Product: Snow Inventory Agent (Unix)
| Secunia ID | n/a |
|---|---|
| References | CVE-2024-1150 |
| Creation Date | 2024-02-08 |
| Criticality | Less critical |
| Zero Day | No |
| Impact | File manipulation |
| Where | Local system |
| Solution Status | No Fix |
| CVSS Scores | 7.8 |