CVE-2021-22154

EPSS 0.24%
Veröffentlicht 13.05.2021 11:15:07
Zuletzt bearbeitet 21.11.2024 05:49:36
Quelle secure@blackberry.com
CVE-Watchlists
Login
Unerledigt
Login

An Information Disclosure vulnerability in the Management Console component of BlackBerry UEM version(s) 12.13.1 QF2 and earlier and 12.12.1a QF6 and earlier could allow an attacker to potentially gain access to a victim's web history.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Blackberry ≫ Unified Endpoint Management Version <= 12.12.0

Blackberry ≫ Unified Endpoint Management Version12.12.1a Updatequick_fix_1

Blackberry ≫ Unified Endpoint Management Version12.12.1a Updatequick_fix_2

Blackberry ≫ Unified Endpoint Management Version12.12.1a Updatequick_fix_3

Blackberry ≫ Unified Endpoint Management Version12.12.1a Updatequick_fix_4

Blackberry ≫ Unified Endpoint Management Version12.12.1a Updatequick_fix_5

Blackberry ≫ Unified Endpoint Management Version12.12.1a Updatequick_fix_6

Blackberry ≫ Unified Endpoint Management Version12.13.0 Update-

Blackberry ≫ Unified Endpoint Management Version12.13.0 Updatemr1

Blackberry ≫ Unified Endpoint Management Version12.13.1 Updatequick_fix_1

Blackberry ≫ Unified Endpoint Management Version12.13.1 Updatequick_fix_2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.24%	0.439

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N

https://support.blackberry.com/kb/articleDetail?articleNumber=000078971

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-22154

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-22154

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-22154

EUVD