An XML External Entity vulnerability in the UEM Core of BlackBerry UEM version(s) earlier than 12.10.1a could allow an attacker to potentially gain read access to files on any system reachable by the UEM service account.
References
Link | Resource |
---|---|
http://support.blackberry.com/kb/articleDetail?articleNumber=000056241 | Mitigation Patch Vendor Advisory |
Configurations
Information
Published : 2019-04-18 10:29
Updated : 2019-04-19 08:55
NVD link : CVE-2019-8999
Mitre link : CVE-2019-8999
JSON object : View
CWE
CWE-611
Improper Restriction of XML External Entity Reference
Products Affected
blackberry
- unified_endpoint_management