CVE-2019-8998

Summary

An information disclosure vulnerability leading to a potential local escalation of privilege in the procfs service (the /proc filesystem) of BlackBerry QNX Software Development Platform version(s) 6.5.0 SP1 and earlier could allow an attacker to potentially gain unauthorized access to a chosen process address space.

Affected Software

VendorProductVersion RangeStatus
BlackBerryQNX Software Development Platform (QNX SDP)6.5.0 SP1 and earlieraffected

Weaknesses

  • Information disclosure leading to a potential local escalation of privilege
  • CWE-413: CWE-413 Improper Resource Locking

ADP Enrichment

CVE Program Container

Additional References

References