Lucene search
K

60 matches found

Cvelist
Cvelist
added 2024/11/25 6:44 p.m.21 views

CVE-2024-51723 Vulnerability in Management Console Impacts BlackBerry AtHoc

A Stored Cross-Site Scripting XSS vulnerability in the Management Console of BlackBerry AtHoc version 7.15 could allow an attacker to potentially execute actions in the context of the victim's session...

4.6CVSS0.00271EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/25 12:0 a.m.6 views

BlackBerry AtHoc 安全漏洞

BlackBerry AtHoc is a crisis communications solution for federal, state and local governments, public safety and law enforcement agencies, and schools from BlackBerry Canada. A security vulnerability exists in BlackBerry AtHoc version 7.15 that stems from a stored cross-site scripting vulnerabili...

4.6CVSS6.1AI score0.00271EPSS
Exploits0References1
OSV
OSV
added 2023/09/12 8:15 p.m.5 views

CVE-2023-21523

A Stored Cross-site Scripting XSS vulnerability in the Management Console User Management and Alerts of BlackBerry AtHoc version 7.15 could allow an attacker to execute script commands in the context of the affected user account...

5.4CVSS5.9AI score0.003EPSS
Exploits0References1
NVD
NVD
added 2023/09/12 8:15 p.m.17 views

CVE-2023-21520

A PII Enumeration via Credential Recovery in the Self Service Credential Recovery of BlackBerry AtHoc version 7.15 could allow an attacker to potentially associate a list of contact details with an AtHoc IWS organization...

5.3CVSS5.2AI score0.00406EPSS
Exploits0References1
Prion
Prion
added 2023/09/12 8:15 p.m.22 views

Design/Logic Flaw

A PII Enumeration via Credential Recovery in the Self Service Credential Recovery of BlackBerry AtHoc version 7.15 could allow an attacker to potentially associate a list of contact details with an AtHoc IWS organization...

5CVSS5.2AI score0.00406EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/09/12 8:15 p.m.22 views

Cross site scripting

A Stored Cross-site Scripting XSS vulnerability in the Management Console User Management and Alerts of BlackBerry AtHoc version 7.15 could allow an attacker to execute script commands in the context of the affected user account...

4.9CVSS5.4AI score0.003EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/09/12 7:45 p.m.19 views

CVE-2023-21520

A PII Enumeration via Credential Recovery in the Self Service Credential Recovery of BlackBerry AtHoc version 7.15 could allow an attacker to potentially associate a list of contact details with an AtHoc IWS organization...

5.5AI score0.00406EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/09/12 7:45 p.m.13 views

CVE-2023-21520

A PII Enumeration via Credential Recovery in the Self Service Credential Recovery of BlackBerry AtHoc version 7.15 could allow an attacker to potentially associate a list of contact details with an AtHoc IWS organization...

6.8AI score0.00406EPSS
Exploits0References1
CVE
CVE
added 2023/09/12 7:45 p.m.51 views

CVE-2023-21520

BlackBerry AtHoc 7.15 Self Service Credential Recovery vulnerability enables PII enumeration, potentially allowing an attacker to associate contact details with an AtHoc IWS organization. Affected software/component: AtHoc 7.15 (Self Service Credential Recovery). Root cause unspecified in sources...

5.3CVSS5.2AI score0.00406EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/12 7:44 p.m.13 views

CVE-2023-21523

A Stored Cross-site Scripting XSS vulnerability in the Management Console User Management and Alerts of BlackBerry AtHoc version 7.15 could allow an attacker to execute script commands in the context of the affected user account...

6AI score0.003EPSS
Exploits0References1
CVE
CVE
added 2023/09/12 7:44 p.m.47 views

CVE-2023-21523

CVE-2023-21523 describes a stored XSS vulnerability in the BlackBerry AtHoc Management Console (User Management and Alerts) affecting version 7.15. The issue allows an attacker to execute script commands in the context of the affected user account. Documented details confirm the vulnerability typ...

5.4CVSS5.4AI score0.003EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/09/12 7:15 p.m.6 views

CVE-2023-21521

An SQL Injection vulnerability in the Management Console Operator Audit Trail of BlackBerry AtHoc version 7.15 could allow an attacker to potentially read sensitive data from the database, modify database data Insert/Update/Delete, execute administration operations on the database, recover the...

7.2CVSS5.9AI score0.0049EPSS
Exploits0References1
NVD
NVD
added 2023/09/12 7:15 p.m.31 views

CVE-2023-21521

An SQL Injection vulnerability in the Management Console Operator Audit Trail of BlackBerry AtHoc version 7.15 could allow an attacker to potentially read sensitive data from the database, modify database data Insert/Update/Delete, execute administration operations on the database, recover the...

7.2CVSS7.4AI score0.0049EPSS
Exploits0References1
NVD
NVD
added 2023/09/12 7:15 p.m.23 views

CVE-2023-21522

A Reflected Cross-site Scripting XSS vulnerability in the Management Console Reports of BlackBerry AtHoc version 7.15 could allow an attacker to potentially control a script that is executed in the victim's browser then they can execute script commands in the context of the affected user account...

6.1CVSS6.1AI score0.00313EPSS
Exploits0References1
OSV
OSV
added 2023/09/12 7:15 p.m.2 views

CVE-2023-21522

A Reflected Cross-site Scripting XSS vulnerability in the Management Console Reports of BlackBerry AtHoc version 7.15 could allow an attacker to potentially control a script that is executed in the victim's browser then they can execute script commands in the context of the affected user account...

6.1CVSS5.8AI score
Exploits0References1
Prion
Prion
added 2023/09/12 7:15 p.m.21 views

Cross site scripting

A Reflected Cross-site Scripting XSS vulnerability in the Management Console Reports of BlackBerry AtHoc version 7.15 could allow an attacker to potentially control a script that is executed in the victim's browser then they can execute script commands in the context of the affected user account...

5.8CVSS6.1AI score0.00313EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/09/12 6:29 p.m.11 views

CVE-2023-21522

A Reflected Cross-site Scripting XSS vulnerability in the Management Console Reports of BlackBerry AtHoc version 7.15 could allow an attacker to potentially control a script that is executed in the victim's browser then they can execute script commands in the context of the affected user account...

6.1AI score0.00313EPSS
Exploits0References1
CVE
CVE
added 2023/09/12 6:29 p.m.55 views

CVE-2023-21522

CVE-2023-21522 describes a Reflected Cross‑Site Scripting (XSS) weakness in BlackBerry AtHoc 7.15, specifically in the Management Console (Reports). The root cause is reflected input that can be used to execute script in the victim’s browser, running with the context of the affected user account....

6.1CVSS6.1AI score0.00313EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/09/12 6:18 p.m.36 views

CVE-2023-21521

An SQL Injection vulnerability in the Management Console Operator Audit Trail of BlackBerry AtHoc version 7.15 could allow an attacker to potentially read sensitive data from the database, modify database data Insert/Update/Delete, execute administration operations on the database, recover the...

7.7AI score0.0049EPSS
Exploits0References1
CVE
CVE
added 2023/09/12 6:18 p.m.63 views

CVE-2023-21521

CVE-2023-21521 describes an SQL Injection in the BlackBerry AtHoc 7.15 Management Console (Operator Audit Trail). The affected component is the Management Console’s operator audit trail feature, where user-supplied input can be interpreted as SQL, enabling an attacker to read data from the databa...

7.2CVSS7.4AI score0.0049EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder