A directory traversal vulnerability in the Connect Service of the BlackBerry Enterprise Mobility Server (BEMS) 2.8.17.29 and earlier could allow an attacker to retrieve arbitrary files in the context of a BEMS administrator account.
[
{
"product": "BlackBerry Enterprise Mobility Server (BEMS)",
"vendor": "BlackBerry",
"versions": [
{
"status": "affected",
"version": "2.8.17.29 and earlier"
}
]
}
]