Vulnerability in BlackBerry Enterprise Server
Severity Rating: High
System Affected:
- Version(s): 12.5.2 and prior
A vulnerability has been identified in BlackBerry Enterprise Server which allow a remote user to obtain login credentials and access sensitive information.
The vulnerability exists because of insufficient security protections between the BlackBerry Enterprise Service (BES) Core and the BES12 Management Console.
Moreover, an exploit could be leveraged to conduct further attacks.
Source:
Solution
Users are advised to apply updates.
More information is available on:
Blackberry
Vendor Information
Blackberry
CVE Information
References
Security Tracker
Cisco
Contact Information
Postal address
Mauritian Computer Emergency Response Team (CERT-MU)
National Computer Board
7th Floor, Stratton Court
La Poudriere Street
Port Louis