FlexNet Publisher (formerly known as FLEXlm) is a software license manager that provides software vendors with control over their products' usage. It provides capabilities to manage and track software usage and deliver concurrent licensing. It enables vendors to enforce product license compliance and report on product usage for the optimal management of software assets.

FlexNet Publisher

Open redirect vulnerability in the lmadmin component in Flexera FlexNet Publisher (aka Flex License Manager) 11.14.1 and earlier, as used in Citrix License Server for Windows and the Citrix License Server VPX, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2015-8277	CRITICAL	9.8	FlexNet Publisher	cpe:2.3:a:flexerasoftware:flexnet_publisher	No	Yes	Feb 24, 2016
CVE-2024-2658	HIGH	8.5	FlexNet Publisher	cpe:2.3:a:flexerasoftware:flexnet_publisher	No	Yes	Jan 30, 2025
CVE-2016-10395	HIGH	7.8	FlexNet Publisher	cpe:2.3:a:flexerasoftware:flexnet_publisher	No	Yes	Jun 15, 2017
CVE-2017-5571	MEDIUM	6.1	FlexNet Publisher	cpe:2.3:a:flexerasoftware:flexnet_publisher	No	Yes	Mar 03, 2017
CVE-2019-25313	MEDIUM	5.1	FlexNet Publisher	cpe:2.3:a:flexerasoftware:flexnet_publisher	No	Yes	Feb 11, 2026

CVE-2017-5571:
FlexNet Publisher vulnerability analysis and mitigation

6.1

Related FlexNet Publisher vulnerabilities:

Benchmark your Cloud Security Posture

Additional Wiz resources

Cloud Vulnerability DB

Cloud Threat Landscape

PEACH

Ready to see Wiz in action?

CVE-2017-5571: FlexNet Publisher vulnerability analysis and mitigation