CVE-2018-8889

Summary

A directory traversal vulnerability in the Connect Service of the BlackBerry Enterprise Mobility Server (BEMS) 2.8.17.29 and earlier could allow an attacker to retrieve arbitrary files in the context of a BEMS administrator account.

Affected Software

VendorProductVersion RangeStatus
BlackBerryBlackBerry Enterprise Mobility Server (BEMS)2.8.17.29 and earlieraffected

Weaknesses

  • Directory traversal

ADP Enrichment

CVE Program Container

Additional References

References