CVE-2021-37500

Name of the Vulnerable Software and Affected Versions Reprise License Manager (RLM) versions prior to 14.2BL4

Description The issue is related to a directory traversal vulnerability in the diagnostics function of the Reprise License Manager (RLM) web interface. This vulnerability allows RLM users with sufficient privileges to overwrite any file on the server.

Recommendations For versions prior to 14.2BL4, update to version 14.2BL4 or later to resolve the issue. As a temporary workaround, consider restricting access to the diagnostics function in the RLM web interface to minimize the risk of exploitation.