10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.322 Low
EPSS
Percentile
97.1%
The mobile device uses a version of BlackBerry 10 OS that is prior to 10.1.0.1880. It is, therefore, affected by the following vulnerabilities in the version of Flash Player supplied with it :
Multiple memory corruption issues exist that allow an unauthenticated, remote attacker to cause a denial of service or to execute arbitrary code. (CVE-2013-1378, CVE-2013-1379, CVE-2013-1380)
An integer overflow condition exists that allows an unauthenticated, remote attacker to execute arbitrary code. (CVE-2013-2555)
Note that this plugin has relied solely on the version of the installed OS and has not attempted to verify whether Flash content is disabled in the device’s browser.
Binary data blackberry_10_1_0_1880.nbin
Vendor | Product | Version | CPE |
---|---|---|---|
adobe | flash_player | cpe:/a:adobe:flash_player | |
blackberry | blackberry_os | cpe:/o:blackberry:blackberry_os |