CVE-2019-8998
7.8
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Summary
An information disclosure vulnerability leading to a potential local escalation of privilege in the procfs service (the /proc filesystem) of BlackBerry QNX Software Development Platform version(s) 6.5.0 SP1 and earlier could allow an attacker to potentially gain unauthorized access to a chosen process address space.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| BlackBerry | QNX Software Development Platform (QNX SDP) | 6.5.0 SP1 and earlier | affected |
Weaknesses
- Information disclosure leading to a potential local escalation of privilege
- CWE-413: CWE-413 Improper Resource Locking
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.