CVE-2019-25313

Name of the Vulnerable Software and Affected Versions FlexNet Publisher version 11.12.1

Description A cross-site request forgery issue allows attackers to create administrative user accounts without authentication. This is achieved by crafting a malicious HTML form that tricks authenticated users into submitting a request to create a new local admin account with a predefined password.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.