Lucene search
+L

5 matches found

ics
ics
added 2021/08/23 12:0 p.m.49 views

BadAlloc Vulnerability Affecting BlackBerry QNX RTOS

Summary On August 17, 2021, BlackBerry publicly disclosed that its QNX Real Time Operating System RTOS is affected by a BadAlloc vulnerability—CVE-2021-22156. BadAlloc is a collection of vulnerabilities affecting multiple RTOSs and supporting libraries.1 A remote attacker could exploit...

9.8CVSS9.6AI score0.018EPSS
Exploits0References34
malwarebytes
malwarebytes
added 2021/08/18 5:33 p.m.115 views

Cars and hospital equipment running Blackberry QNX may be affected by BadAlloc vulnerability

Following an announcement by Blackberry the U.S. Food & Drug Administration FDA and the Cybersecurity & Infrastructure Security Agency CISA have put out alerts that vulnerabilities found in the Blackberry QNX real-time operating system RTOS may introduce risks for certain medical devices...

6.8CVSS0.4AI score0.018EPSS
Exploits0
thn
thn
added 2021/08/18 3:5 p.m.107 views

BadAlloc Flaw Affects BlackBerry QNX Used in Millions of Cars and Medical Devices

A major vulnerability affecting older versions of BlackBerry's QNX Real-Time Operating System RTOS could allow malicious actors to cripple and gain control of a variety of products, including cars, medical, and industrial equipment. The shortcoming CVE-2021-22156, CVSS score: 9.0 is part of a...

9.8CVSS1.3AI score0.018EPSS
Exploits0
osv
osv
added 2021/08/17 7:15 p.m.4 views

CVE-2021-22156

An integer overflow vulnerability in the calloc function of the C runtime library of affected versions of BlackBerry® QNX Software Development Platform SDP versions 6.5.0SP1 and earlier, QNX OS for Medical 1.1 and earlier, and QNX OS for Safety 1.0.1 and earlier that could allow an attacker to...

9.8CVSS6AI score0.018EPSS
Exploits0References2
cve
cve
added 2021/08/17 6:35 p.m.214 views

CVE-2021-22156

CVE-2021-22156 is an integer overflow in the calloc() function of the BlackBerry QNX C runtime library, affecting SDP 6.5.0SP1 and earlier, QNX OS for Medical 1.1 and earlier, and QNX OS for Safety 1.0.1 and earlier. Exploitation could cause denial of service or arbitrary code execution; remote a...

9.8CVSS9.6AI score0.018EPSS
Exploits0References2Affected Software3
Rows per page
Query Builder