4.9

CVE-2014-1469

BlackBerry Enterprise Server 5.x before 5.0.4 MR7 and Enterprise Service 10.x before 10.2.2 log cleartext credentials during exception handling, which allows local users to obtain sensitive information by reading the exception log file.

Data is provided by the National Vulnerability Database (NVD)
BlackberryEnterprise Server Updatemr6 SwPlatformexchange_server Version <= 5.0.4
BlackberryEnterprise Server Updatemr6 SwPlatformgroupwise Version <= 5.0.4
BlackberryEnterprise Server Updatemr6 SwPlatformlotus_domino Version <= 5.0.4
BlackberryEnterprise Server Express Version5.0.4 SwPlatformexchange_server
BlackberryEnterprise Server Express Version5.0.4 SwPlatformlotus_domino
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.06% 0.192
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 4.9 3.9 6.9
AV:L/AC:L/Au:N/C:C/I:N/A:N