Privilege Escalation Vulnerability in FlexNet Manager Suite by Flexera
CVE-2026-4026

8.7HIGH

Key Information:

Vendor: Flexera
Status: Flexnet Manager Suite
Vendor: CVE Published:; 19 June 2026

What is CVE-2026-4026?

A vulnerability has been detected in FlexNet Manager Suite 2025 R1 that allows an authenticated user with read-only access to account settings to improperly elevate their privileges to Administrator level. This flaw could potentially be exploited by malicious users to gain unauthorized access and alter configurations, posing a significant risk to the security framework of the application.

Affected Version(s)

FlexNet Manager Suite Windows 2025 R1

References

https://community.flexera.com/s/feed/0D5PL00000rJX5K0AW

vendor-advisory

CVSS V4

Score:

8.7

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 19, 2026
Vulnerability Reserved
Mar 11, 2026

Credit

Sopra Steria

CVE-2026-4026 Data

JSON