CVE-2018-15573

Name of the Vulnerable Software and Affected Versions Reprise License Manager versions through 12.2BL2

Description An issue was discovered in the Reprise License Manager, where attackers can use the web interface to read and write data to any file on disk, as long as rlm.exe has access to it, via the /goform/edit lf process endpoint with file content in the lfdata parameter and a pathname in the lf parameter. The web interface, by default, is on port 5054 and does not require authentication.

Recommendations For versions through 12.2BL2, consider disabling access to the /goform/edit lf process endpoint until a resolution is provided. Restrict access to the web interface on port 5054 to minimize the risk of exploitation. Avoid using the lfdata and lf parameters in the affected endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.