Improper Input Validation in BlackBerry UEM Core Services
CVE-2020-6933

5.5MEDIUM

Key Information:

Vendor: Blackberry
Status: Blackberry Uem
Vendor: CVE Published:; 14 October 2020

What is CVE-2020-6933?

An improper input validation vulnerability exists in the UEM Core of BlackBerry UEM, potentially allowing attackers to exploit the service, resulting in a Denial of Service (DoS). This issue affects multiple versions, including 12.13.0 and earlier versions of 12.12.1a QF2 and 12.11.1 QF3. Addressing this vulnerability is crucial to maintain service availability and integrity.

Affected Version(s)

BlackBerry UEM BlackBerry UEM version 12.13.0 BlackBerry UEM version 12.12.1a QF2 and earlier BlackBerry UEM version 12.11.1 QF3 and earlier

References

https://support.blackberry.com/kb/articleDetail?articleNu...

x_refsource_MISC

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 14, 2020
Vulnerability Reserved
Jan 13, 2020

Blackberry

What is CVE-2020-6933?

Affected Version(s)

References

CVSS V3.1

Timeline