- Revenera Community
- :
- FlexNet Publisher
- :
- FlexNet Publisher Forum
- :
- Flexnetls.jar Common Vulnerabilities and Exposures
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Subscribe
- Mute
- Printer Friendly Page
- Mark as New
- Subscribe
- Mute
- Permalink
- Report Inappropriate Content
Hi there,
As part or our solution we deploy your local license server (flexnetls.jar). One of our customers ran a scan and found 10 CVEs (Common Vulnerabilities and Exposures) in flexnetls.jar, version 2018.09. Please see attached document.
I see that there is newer version of flexnetls.jar, 2020.07. We can upgrade to that version. However, even in that version I see that you still have jackson-databind-2.8.x.jar. As you can see from attached document that version has known CVEs.
Is your next release of flexnetls.jar going to have all of these CVEs addressed?
Many thanks,
Milisav Radulovic
- Mark as New
- Subscribe
- Mute
- Permalink
- Report Inappropriate Content
Hello Milisav,
I have moved your post from the Software Vulnerability Manager Forum to Flexnet Manager forum due to its relevancy.
Regards,
Waqas
- Mark as New
- Subscribe
- Mute
- Permalink
- Report Inappropriate Content
Hello Milisav,
I have moved your post from the Software Vulnerability Manager Forum to Flexnet Manager forum due to its relevancy.
Regards,
Waqas
- Mark as New
- Subscribe
- Mute
- Permalink
- Report Inappropriate Content
Thank you.