7.9
CVE-2013-3693
- EPSS 0.27%
- Veröffentlicht 11.10.2013 22:55:36
- Zuletzt bearbeitet 11.04.2025 00:51:21
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe BlackBerry Universal Device Service in BlackBerry Enterprise Service (BES) 10.0 through 10.1.2 does not properly restrict access to the JBoss Remote Method Invocation (RMI) interface, which allows remote attackers to upload and execute arbitrary packages via a request to port 1098.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Blackberry ≫ Blackberry Enterprise Service Version10.0
Blackberry ≫ Blackberry Enterprise Service Version10.1.0
Blackberry ≫ Blackberry Enterprise Service Version10.1.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.27% | 0.472 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.9 | 5.5 | 10 |
AV:A/AC:M/Au:N/C:C/I:C/A:C
|