CVE-2018-15573
Last modified
CVE-2018-15573 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. An issue was discovered in Reprise License Manager (RLM) through 12.2BL2. Attackers can use the web interface to read and write data to any file on disk (as long as rlm.exe has access to it) via /goform/edit_lf_process with file content in the lfdata parameter and a pathname in the lf parameter. EPSS estimates a 2.15% chance of exploitation in the next 30 days.
Description
An issue was discovered in Reprise License Manager (RLM) through 12.2BL2. Attackers can use the web interface to read and write data to any file on disk (as long as rlm.exe has access to it) via /goform/edit_lf_process with file content in the lfdata parameter and a pathname in the lf parameter. By default, the web interface is on port 5054, and does not require authentication. NOTE: the vendor has stated "We do not consider this a vulnerability.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Reprisesoftware | Reprise License Manager | < 16.1 |
References
- http://seclists.org/fulldisclosure/2021/Dec/18Third Party Advisory
- https://bittherapy.net/rce-with-arbitrary-file-write-and-xss-in-reprise-license-manager/Exploit, Third Party Advisory
- http://seclists.org/fulldisclosure/2021/Dec/18Third Party Advisory
- https://bittherapy.net/rce-with-arbitrary-file-write-and-xss-in-reprise-license-manager/Exploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2018-15573?
How severe is CVE-2018-15573?
How do I fix CVE-2018-15573?
Are you affected by CVE-2018-15573?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST