CVE-2020-6932
10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
Summary
An information disclosure and remote code execution vulnerability in the slinger web server of the BlackBerry QNX Software Development Platform versions 6.4.0 to 6.6.0 could allow an attacker to potentially read arbitrary files and run arbitrary executables in the context of the web server.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| BlackBerry | QNX Software Development Platform (SDP) | 6.4.0 <= 6.6.0 | affected |
Weaknesses
- CWE-150: CWE-150 Improper Neutralization of Escape, Meta, or Control Sequences
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.