CVE-2017-9369 Vulnerability Details

  /     /     /  

CVE-2017-9369 Metadata Quick Info

CVE Published: 14/11/2017 | CVE Updated: 16/09/2024 | CVE Year: 2017
Source: blackberry | Vendor: BlackBerry | Product: QNX Software Development Platform (QNX SDP)
Status : PUBLISHED

---

CVE-2017-9369 Description

In BlackBerry QNX Software Development Platform (SDP) 6.6.0 and 6.5.0 SP1 and earlier, an information disclosure vulnerability in the default configuration of the QNX SDP could allow an attacker to gain information relating to memory layout of higher privileged processes by manipulating environment variables that influence the loader.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: Information disclosure across privilege barriers.
Source: BlackBerry

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).