Lucene search

K
BlackberryUnified Endpoint Manager

7 matches found

CVE
CVE
added 2020/10/14 2:15 p.m.42 views

CVE-2020-6933

An improper input validation vulnerability in the UEM Core of BlackBerry UEM version(s) 12.13.0, 12.12.1a QF2 (and earlier), and 12.11.1 QF3 (and earlier) could allow an attacker to potentially cause a Denial of Service (DoS) of the UEM Core service.

5.5CVSS5.3AI score0.0005EPSS
CVE
CVE
added 2017/05/10 4:29 p.m.40 views

CVE-2017-3894

A stored cross site scripting vulnerability in the Management Console of BlackBerry Unified Endpoint Manager version 12.6.1 and earlier, and all versions of BES12, allows attackers to execute actions in the context of a Management Console administrator by uploading a malicious script and then persu...

6.1CVSS6AI score0.00356EPSS
CVE
CVE
added 2018/12/20 8:29 p.m.39 views

CVE-2018-8888

A stored cross-site scripting (XSS) vulnerability in the Management Console of BlackBerry UEM versions earlier than 12.10.0 could allow an attacker to store script commands that could later be executed in the context of another Management Console administrator.

4.8CVSS4.8AI score0.00277EPSS
CVE
CVE
added 2018/03/13 6:29 p.m.35 views

CVE-2017-17442

In BlackBerry UEM Management Console version 12.7.1 and earlier, a reflected cross-site scripting vulnerability that could allow an attacker to execute script commands in the context of the affected UEM Management Console account by crafting a malicious link and then persuading a user with legitima...

6.1CVSS6.2AI score0.00313EPSS
CVE
CVE
added 2018/12/20 8:29 p.m.34 views

CVE-2018-8891

Multiple stored cross-site scripting (XSS) vulnerabilities in the Management Console of BlackBerry UEM versions earlier than 12.9.1 could allow an attacker to store script commands that could later be executed in the context of another Management Console administrator.

4.8CVSS5AI score0.00277EPSS
CVE
CVE
added 2018/12/20 8:29 p.m.30 views

CVE-2018-8892

A cross-site request forgery (CSRF) vulnerability in the Management Console of BlackBerry UEM versions earlier than 12.9.1 could allow an attacker to make modifications to the UEM settings in the context of a Management Console administrator.

6.5CVSS6.4AI score0.00112EPSS
CVE
CVE
added 2018/10/12 1:29 p.m.28 views

CVE-2018-8890

An information disclosure vulnerability in the Management Console of BlackBerry UEM 12.8.0 and 12.8.1 could allow an attacker to take over a UEM user's session and perform administrative actions in the context of the user.

7.5CVSS7.1AI score0.00322EPSS