Remote code execution

2020-08-1213:15:00

PRIOn knowledge base

www.prio-n.com

9.2 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.5%

JSON

An information disclosure and remote code execution vulnerability in the slinger web server of the BlackBerry QNX Software Development Platform versions 6.4.0 to 6.6.0 could allow an attacker to potentially read arbitrary files and run arbitrary executables in the context of the web server.

CPENameOperatorVersion
qnx_software_development_platformge6.4.0
qnx_software_development_platformle6.6.0

CPE	Name	Operator	Version
	qnx_software_development_platform	ge	6.4.0
	qnx_software_development_platform	le	6.6.0

References

support.blackberry.com/kb/articleDetail?articleNumber=000061411