Reprise License Manager
by Reprise License Management Software
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-43183 | Hig | 0.57 | 8.8 | 0.01 | Feb 3, 2024 | Incorrect access control in Reprise License Management Software Reprise License Manager v15.1 allows read-only users to arbitrarily change the password of an admin and hijack their account. | ||
| CVE-2021-37500 | Hig | 0.53 | 8.1 | 0.01 | Jan 20, 2023 | Directory traversal vulnerability in Reprise License Manager (RLM) web interface before 14.2BL4 in the diagnostics function that allows RLM users with sufficient privileges to overwrite any file the on the server. | ||
| CVE-2025-25939 | Med | 0.40 | 6.1 | 0.00 | Mar 3, 2025 | Reprise License Manager 14.2 is vulnerable to reflected cross-site scripting in /goform/activate_process via the akey parameter. |
- risk 0.57cvss 8.8epss 0.01
Incorrect access control in Reprise License Management Software Reprise License Manager v15.1 allows read-only users to arbitrarily change the password of an admin and hijack their account.
- risk 0.53cvss 8.1epss 0.01
Directory traversal vulnerability in Reprise License Manager (RLM) web interface before 14.2BL4 in the diagnostics function that allows RLM users with sufficient privileges to overwrite any file the on the server.
- risk 0.40cvss 6.1epss 0.00
Reprise License Manager 14.2 is vulnerable to reflected cross-site scripting in /goform/activate_process via the akey parameter.