Insufficient Access Control in FlexNet Manager Suite by Flexera
CVE-2026-4027

7.1HIGH

Key Information:

Vendor: Flexera
Status: Flexnet Manager Suite
Vendor: CVE Published:; 19 June 2026

What is CVE-2026-4027?

A vulnerability in FlexNet Manager Suite 2025 R1 and R2 has been identified, which could potentially allow unauthorized users to access sensitive attachment files. This issue arises due to insufficient access control mechanisms, which could lead to unauthorized file access and compromise the confidentiality of the data stored within the application.

Affected Version(s)

FlexNet Manager Suite Windows 2025 R1 <= 2025 R2

FlexNet Manager Suite Windows 2026 R1

References

https://community.flexera.com/s/feed/0D5PL00000ssjNi0AI

vendor-advisory

CVSS V4

Score:

7.1

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 19, 2026
Vulnerability Reserved
Mar 11, 2026

Credit

Sopra Steria

CVE-2026-4027 Data

JSON