8.2
CVE-2016-3128
- EPSS 0.25%
- Published 13.01.2017 09:59:00
- Last modified 20.04.2025 01:37:25
- Source secure@blackberry.com
- Teams watchlist Login
- Open Login
A spoofing vulnerability in the Core of BlackBerry Enterprise Server (BES) 12 through 12.5.2 allows remote attackers to enroll an illegitimate device to the BES, gain access to device parameters for the BES, or send false information to the BES by gaining access to specific information about a device that was legitimately enrolled on the BES.
Data is provided by the National Vulnerability Database (NVD)
Blackberry ≫ Enterprise Service Version12.0.0
Blackberry ≫ Enterprise Service Version12.0.1
Blackberry ≫ Enterprise Service Version12.1.0
Blackberry ≫ Enterprise Service Version12.2.0
Blackberry ≫ Enterprise Service Version12.2.1
Blackberry ≫ Enterprise Service Version12.3.0
Blackberry ≫ Enterprise Service Version12.3.1
Blackberry ≫ Enterprise Service Version12.4.0
Blackberry ≫ Enterprise Service Version12.4.1
Blackberry ≫ Enterprise Service Version12.5.0a
Blackberry ≫ Enterprise Service Version12.5.1
Blackberry ≫ Enterprise Service Version12.5.2
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.25% | 0.457 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 8.2 | 3.9 | 4.2 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
|
| nvd@nist.gov | 6.4 | 10 | 4.9 |
AV:N/AC:L/Au:N/C:P/I:P/A:N
|