Lucene search

[email protected]NVD:CVE-2013-3692

HistoryJul 13, 2013 - 1:10 p.m.

CVE-2013-3692

2013-07-1313:10:00

CWE-264

[email protected]

web.nvd.nist.gov

6.2 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

30.5%

JSON

BlackBerry 10 OS before 10.0.10.648 on BlackBerry Z10 smartphones uses weak permissions for a BlackBerry Protect object, which allows physically proximate attackers to bypass intended access restrictions by leveraging a user’s BlackBerry Protect password-reset request and a user’s installation of a crafted application.

Affected configurations

NVD

Node

blackberryblackberry_osRange≤10.0.10.261

blackberryblackberry_osMatch10.0

blackberryblackberry_osMatch10.0.10

blackberryblackberry_osMatch10.0.10.85

AND

blackberryz10Match-

References

www.blackberry.com/btsc/KB34458

exchange.xforce.ibmcloud.com/vulnerabilities/85878

6.2 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

30.5%

JSON

Related for NVD:CVE-2013-3692

threatpost1 cve1 cvelist1 prion1 thn2