CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
91.6%
Buffer overflow in phrelay in BlackBerry QNX Neutrino RTOS through 6.5.0 SP1 in the QNX Software Development Platform allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted packets to TCP port 4868 that leverage improper handling of the /dev/photon device file.
Vendor | Product | Version | CPE |
---|---|---|---|
blackberry | qnx_software_development_platform | - | cpe:2.3:a:blackberry:qnx_software_development_platform:-:*:*:*:*:*:*:* |
blackberry | qnx_neutrino_rtos | * | cpe:2.3:o:blackberry:qnx_neutrino_rtos:*:sp1:*:*:*:*:*:* |
blackberry | qnx_neutrino_rtos | 6.4.1 | cpe:2.3:o:blackberry:qnx_neutrino_rtos:6.4.1:*:*:*:*:*:*:* |
blackberry | qnx_neutrino_rtos | 6.5.0 | cpe:2.3:o:blackberry:qnx_neutrino_rtos:6.5.0:*:*:*:*:*:*:* |