Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2017-9371
PUBLISHED
More InfoOfficial Page
Assigner-blackberry
Assigner Org ID-dbe78b00-5e7b-4fda-8748-329789ecfc5c
View Known Exploited Vulnerability (KEV) details
Published At-14 Nov, 2017 | 21:00
Updated At-22 Aug, 2025 | 15:05
Rejected At-
▼CVE Numbering Authority (CNA)

In BlackBerry QNX Software Development Platform (SDP) 6.6.0 and 6.5.0 SP1 and earlier, a loss of integrity vulnerability in the default configuration of the QNX SDP could allow an attacker being able to reduce the entropy of the PRNG, making other blended attacks more practical by gaining control over environmental factors that influence seed generation.

Affected Products
Vendor
BlackBerry LimitedBlackBerry
Product
QNX Software Development Platform (QNX SDP)
Default Status
unaffected
Versions
Affected
  • 6.6.0
  • 6.5.0 SP1 and earlier
Problem Types
TypeCWE IDDescription
N/AN/ALoss of integrity vulnerability
CWECWE-332CWE-332 Insufficient Entropy in PRNG
Metrics
VersionBase scoreBase severityVector
3.12.6LOW
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Metrics Other Info
Impacts
CAPEC IDDescription
CAPEC-554CAPEC-554 Functionality Bypass
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://support.blackberry.com/kb/articleDetail?language=en_US&articleNumber=000046674
x_refsource_CONFIRM
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://support.blackberry.com/kb/articleDetail?language=en_US&articleNumber=000046674
x_refsource_CONFIRM
x_transferred
Details not found