VYPR

License Manager

by Reprise

CVEs (3)

  • CVE-2018-15573HigAug 20, 2018
    risk 0.57cvss 8.8epss 0.02

    An issue was discovered in Reprise License Manager (RLM) through 12.2BL2. Attackers can use the web interface to read and write data to any file on disk (as long as rlm.exe has access to it) via /goform/edit_lf_process with file content in the lfdata parameter and a pathname in…

  • CVE-2018-5716HigFeb 21, 2018
    risk 0.53cvss 8.1epss 0.02

    An issue was discovered in Reprise License Manager 11.0. This vulnerability is a Path Traversal where the attacker, by changing a field in the Web Request, can have access to files on the File System of the Server. By specifying a pathname in the POST parameter "lf" to the…

  • CVE-2023-44031HigFeb 3, 2024
    risk 0.49cvss 7.5epss 0.01

    Incorrect access control in Reprise License Management Software Reprise License Manager v15.1 allows attackers to arbitrarily save sensitive files in insecure locations via a crafted POST request.