Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2021-22152
Analyzed
More InfoOfficial Page
Source-secure@blackberry.com
View Known Exploited Vulnerability (KEV) details
Published At-13 May, 2021 | 11:15
Updated At-21 May, 2021 | 18:23

A Denial of Service due to Improper Input Validation vulnerability in the Management Console component of BlackBerry UEM version(s) 12.13.1 QF2 and earlier and 12.12.1a QF6 and earlier could allow an attacker to potentially to prevent any new user connections.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.15.5MEDIUM
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Primary2.02.1LOW
AV:L/AC:L/Au:N/C:N/I:N/A:P
Type: Primary
Version: 3.1
Base score: 5.5
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Type: Primary
Version: 2.0
Base score: 2.1
Base severity: LOW
Vector:
AV:L/AC:L/Au:N/C:N/I:N/A:P
CPE Matches
BlackBerry Limited
blackberry
>>unified_endpoint_management>>Versions up to 12.12.0(inclusive)
cpe:2.3:a:blackberry:unified_endpoint_management:*:*:*:*:*:*:*:*
BlackBerry Limited
blackberry
>>unified_endpoint_management>>12.12.1a
cpe:2.3:a:blackberry:unified_endpoint_management:12.12.1a:quick_fix_1:*:*:*:*:*:*
BlackBerry Limited
blackberry
>>unified_endpoint_management>>12.12.1a
cpe:2.3:a:blackberry:unified_endpoint_management:12.12.1a:quick_fix_2:*:*:*:*:*:*
BlackBerry Limited
blackberry
>>unified_endpoint_management>>12.12.1a
cpe:2.3:a:blackberry:unified_endpoint_management:12.12.1a:quick_fix_3:*:*:*:*:*:*
BlackBerry Limited
blackberry
>>unified_endpoint_management>>12.12.1a
cpe:2.3:a:blackberry:unified_endpoint_management:12.12.1a:quick_fix_4:*:*:*:*:*:*
BlackBerry Limited
blackberry
>>unified_endpoint_management>>12.12.1a
cpe:2.3:a:blackberry:unified_endpoint_management:12.12.1a:quick_fix_5:*:*:*:*:*:*
BlackBerry Limited
blackberry
>>unified_endpoint_management>>12.12.1a
cpe:2.3:a:blackberry:unified_endpoint_management:12.12.1a:quick_fix_6:*:*:*:*:*:*
BlackBerry Limited
blackberry
>>unified_endpoint_management>>12.13.0
cpe:2.3:a:blackberry:unified_endpoint_management:12.13.0:-:*:*:*:*:*:*
BlackBerry Limited
blackberry
>>unified_endpoint_management>>12.13.0
cpe:2.3:a:blackberry:unified_endpoint_management:12.13.0:mr1:*:*:*:*:*:*
BlackBerry Limited
blackberry
>>unified_endpoint_management>>12.13.1
cpe:2.3:a:blackberry:unified_endpoint_management:12.13.1:quick_fix_1:*:*:*:*:*:*
BlackBerry Limited
blackberry
>>unified_endpoint_management>>12.13.1
cpe:2.3:a:blackberry:unified_endpoint_management:12.13.1:quick_fix_2:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-20Primarynvd@nist.gov
CWE ID: CWE-20
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://support.blackberry.com/kb/articleDetail?articleNumber=000078971secure@blackberry.com
Vendor Advisory
Hyperlink: https://support.blackberry.com/kb/articleDetail?articleNumber=000078971
Source: secure@blackberry.com
Resource:
Vendor Advisory
Change History
0Changes found
Details not found