60 matches found
CVE-2024-51723 Vulnerability in Management Console Impacts BlackBerry AtHoc
A Stored Cross-Site Scripting XSS vulnerability in the Management Console of BlackBerry AtHoc version 7.15 could allow an attacker to potentially execute actions in the context of the victim's session...
BlackBerry AtHoc 安全漏洞
BlackBerry AtHoc is a crisis communications solution for federal, state and local governments, public safety and law enforcement agencies, and schools from BlackBerry Canada. A security vulnerability exists in BlackBerry AtHoc version 7.15 that stems from a stored cross-site scripting vulnerabili...
CVE-2023-21523
A Stored Cross-site Scripting XSS vulnerability in the Management Console User Management and Alerts of BlackBerry AtHoc version 7.15 could allow an attacker to execute script commands in the context of the affected user account...
CVE-2023-21520
A PII Enumeration via Credential Recovery in the Self Service Credential Recovery of BlackBerry AtHoc version 7.15 could allow an attacker to potentially associate a list of contact details with an AtHoc IWS organization...
Design/Logic Flaw
A PII Enumeration via Credential Recovery in the Self Service Credential Recovery of BlackBerry AtHoc version 7.15 could allow an attacker to potentially associate a list of contact details with an AtHoc IWS organization...
Cross site scripting
A Stored Cross-site Scripting XSS vulnerability in the Management Console User Management and Alerts of BlackBerry AtHoc version 7.15 could allow an attacker to execute script commands in the context of the affected user account...
CVE-2023-21520
A PII Enumeration via Credential Recovery in the Self Service Credential Recovery of BlackBerry AtHoc version 7.15 could allow an attacker to potentially associate a list of contact details with an AtHoc IWS organization...
CVE-2023-21520
A PII Enumeration via Credential Recovery in the Self Service Credential Recovery of BlackBerry AtHoc version 7.15 could allow an attacker to potentially associate a list of contact details with an AtHoc IWS organization...
CVE-2023-21520
BlackBerry AtHoc 7.15 Self Service Credential Recovery vulnerability enables PII enumeration, potentially allowing an attacker to associate contact details with an AtHoc IWS organization. Affected software/component: AtHoc 7.15 (Self Service Credential Recovery). Root cause unspecified in sources...
CVE-2023-21523
A Stored Cross-site Scripting XSS vulnerability in the Management Console User Management and Alerts of BlackBerry AtHoc version 7.15 could allow an attacker to execute script commands in the context of the affected user account...
CVE-2023-21523
CVE-2023-21523 describes a stored XSS vulnerability in the BlackBerry AtHoc Management Console (User Management and Alerts) affecting version 7.15. The issue allows an attacker to execute script commands in the context of the affected user account. Documented details confirm the vulnerability typ...
CVE-2023-21521
An SQL Injection vulnerability in the Management Console Operator Audit Trail of BlackBerry AtHoc version 7.15 could allow an attacker to potentially read sensitive data from the database, modify database data Insert/Update/Delete, execute administration operations on the database, recover the...
CVE-2023-21521
An SQL Injection vulnerability in the Management Console Operator Audit Trail of BlackBerry AtHoc version 7.15 could allow an attacker to potentially read sensitive data from the database, modify database data Insert/Update/Delete, execute administration operations on the database, recover the...
CVE-2023-21522
A Reflected Cross-site Scripting XSS vulnerability in the Management Console Reports of BlackBerry AtHoc version 7.15 could allow an attacker to potentially control a script that is executed in the victim's browser then they can execute script commands in the context of the affected user account...
CVE-2023-21522
A Reflected Cross-site Scripting XSS vulnerability in the Management Console Reports of BlackBerry AtHoc version 7.15 could allow an attacker to potentially control a script that is executed in the victim's browser then they can execute script commands in the context of the affected user account...
Cross site scripting
A Reflected Cross-site Scripting XSS vulnerability in the Management Console Reports of BlackBerry AtHoc version 7.15 could allow an attacker to potentially control a script that is executed in the victim's browser then they can execute script commands in the context of the affected user account...
CVE-2023-21522
A Reflected Cross-site Scripting XSS vulnerability in the Management Console Reports of BlackBerry AtHoc version 7.15 could allow an attacker to potentially control a script that is executed in the victim's browser then they can execute script commands in the context of the affected user account...
CVE-2023-21522
CVE-2023-21522 describes a Reflected Cross‑Site Scripting (XSS) weakness in BlackBerry AtHoc 7.15, specifically in the Management Console (Reports). The root cause is reflected input that can be used to execute script in the victim’s browser, running with the context of the affected user account....
CVE-2023-21521
An SQL Injection vulnerability in the Management Console Operator Audit Trail of BlackBerry AtHoc version 7.15 could allow an attacker to potentially read sensitive data from the database, modify database data Insert/Update/Delete, execute administration operations on the database, recover the...
CVE-2023-21521
CVE-2023-21521 describes an SQL Injection in the BlackBerry AtHoc 7.15 Management Console (Operator Audit Trail). The affected component is the Management Console’s operator audit trail feature, where user-supplied input can be interpreted as SQL, enabling an attacker to read data from the databa...