Known Vulnerabilities for products from Blackberry
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Blackberry".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Blackberry can be found at device.report : Blackberry
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-21523 json | A Stored Cross-site Scripting (XSS) vulnerability in the Management Console (User Management and Alert... | 5.4 - MEDIUM | 2023-09-12 | 2023-09-15 |
| CVE-2023-21522 json | A Reflected Cross-site Scripting (XSS) vulnerability in the Management Console (Reports) of BlackBerry AtHoc version 7.15 co... | 6.1 - MEDIUM | 2023-09-12 | 2023-09-15 |
| CVE-2023-21521 json | An SQL Injection vulnerability in the Management Console (Operator Audit Trail) of BlackBerry AtHoc version 7.15 could a... | 7.2 - HIGH | 2023-09-12 | 2023-11-07 |
| CVE-2023-21520 json | A PII Enumeration via Credential Recovery in the Self Service (Credential Recovery) of BlackBerry AtH... | 5.3 - MEDIUM | 2023-09-12 | 2023-09-15 |
| CVE-2021-32025 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.8 - HIGH | 2022-03-10 | 2022-07-12 |
| CVE-2021-32024 json | A remote code execution vulnerability in the BMP image codec of BlackBerry QNX SDP version(s) 6.4 to 7.1 could allow an attac... | 9.8 - CRITICAL | 2021-12-13 | 2022-02-08 |
| CVE-2021-32023 json | An elevation of privilege vulnerability in the message broker of BlackBerry Protect for Windows version(s) versions 1574 and ... | 7.8 - HIGH | 2021-11-10 | 2022-07-12 |
| CVE-2021-32022 json | A low privileged delete vulnerability using CEF RPC server of BlackBerry Protect for Windows version(s) versions 1574 and ear... | 5.5 - MEDIUM | 2021-11-10 | 2021-11-16 |
| CVE-2021-32021 json | A denial of service vulnerability in the message broker of BlackBerry Protect for Windows version(s) versions 1574 and earlie... | 7.8 - HIGH | 2021-11-10 | 2021-11-16 |
| CVE-2021-22156 json | An integer overflow vulnerability in the calloc() function of the C runtime library of affected versions of BlackBerry® QNX ... | 9.8 - CRITICAL | 2021-08-17 | 2021-08-30 |
| CVE-2021-22155 json | An Authentication Bypass vulnerability in the SAML Authentication component of BlackBerry Workspaces Server (deployed with Ap... | 8.8 - HIGH | 2021-05-13 | 2022-06-28 |
| CVE-2021-22154 json | An Information Disclosure vulnerability in the Management Console component of BlackBerry UEM version(s) 12.13.1 QF2 and earl... | 5.3 - MEDIUM | 2021-05-13 | 2022-07-12 |
| CVE-2021-22153 json | A Remote Code Execution vulnerability in the Management Console component of BlackBerry UEM version(s) 12.13.1 QF2 and earlie... | 7.3 - HIGH | 2021-05-13 | 2021-05-21 |
| CVE-2021-22152 json | A Denial of Service due to Improper Input Validation vulnerability in the Management Console component of BlackBerry UEM vers... | 5.5 - MEDIUM | 2021-05-13 | 2021-05-21 |
| CVE-2020-36486 json | Swift File Transfer Mobile v1.1.2 and below was discovered to contain a cross-site scripting (XSS) vulnerability via the 'pat... | 6.1 - MEDIUM | 2021-10-22 | 2021-10-26 |
| CVE-2020-11652 json | An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process ClearFuncs class al... | 6.5 - MEDIUM | 2020-04-30 | 2022-05-03 |
| CVE-2020-6933 json | An improper input validation vulnerability in the UEM Core of BlackBerry UEM version(s) 12.13.0, 12.12.1a QF2 (and earlier), ... | 5.5 - MEDIUM | 2020-10-14 | 2020-10-29 |
| CVE-2020-6932 json | An information disclosure and remote code execution vulnerability in the slinger web server of the BlackBerry QNX Software De... | 9.8 - CRITICAL | 2020-08-12 | 2021-07-21 |
| CVE-2020-1938 json | When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to Apache Tomcat. Tomcat tr... | 9.8 - CRITICAL | 2020-02-24 | 2023-11-07 |
| CVE-2019-9506 json | The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does no... | 8.1 - HIGH | 2019-08-14 | 2021-11-04 |
Known software with vulnerabilities from Blackberry
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Blackberry | Athoc | 7.6_hf-567 |
| Application | Blackberry | Blackberry Enterprise Service | 10.0 |
| Application | Blackberry | Blackberry Link | 1.0.1.12 |
| Operating System | Blackberry | Blackberry Os | 10.0 |
| Operating System | Blackberry | Blackberry Playbook Os | 2.1 |
| Application | Blackberry | Blackberry Universal Device Service | 6.0 |
| Application | Blackberry | Blackberry World | 5.0.0.261 |
| Application | Blackberry | Enterprise Mobility Server | - |
| Application | Blackberry | Enterprise Server | 12.4 |
| Application | Blackberry | Enterprise Server Express | 5.0.4 |
| Application | Blackberry | Good Control Server | 2.2.511.26 |
| Application | Blackberry | Mobile Device Manager | - |
| Application | Blackberry | Qnx Momentics | 6.2.0 |
| Application | Blackberry | Qnx Momentics Tool Suite | 4.5 |
| Operating System | Blackberry | Qnx Neutrino Rtos | 6.4.1 |
| Application | Blackberry | Qnx Software Development Platform | - |
| Application | Blackberry | Unified Endpoint Manager | 12.10 |
| Hardware | Blackberry | Z10 | - |