CVE-2019-8999

Summary

An XML External Entity vulnerability in the UEM Core of BlackBerry UEM version(s) earlier than 12.10.1a could allow an attacker to potentially gain read access to files on any system reachable by the UEM service account.

Affected Software

VendorProductVersion RangeStatus
n/aBlackBerry UEM12.10.1a and earlieraffected

Weaknesses

  • XML External Entity

ADP Enrichment

CVE Program Container

Additional References

References