CVE-2017-3893 Vulnerability Details

  /     /     /  

CVE-2017-3893 Metadata Quick Info

CVE Published: 14/11/2017 | CVE Updated: 16/09/2024 | CVE Year: 2017
Source: blackberry | Vendor: BlackBerry | Product: QNX Software Development Platform (QNX SDP)
Status : PUBLISHED

---

CVE-2017-3893 Description

In BlackBerry QNX Software Development Platform (SDP) 6.6.0, the default configuration of the QNX SDP system did not in all circumstances prevent attackers from modifying the GOT or PLT tables with buffer overflow attacks.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: Flawed vulnerability mitigation
Source: BlackBerry

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).