CVE-2014-2388

Name of the Vulnerable Software and Affected Versions BlackBerry OS versions prior to 10.2.1.1925

Description The issue concerns the Storage and Access service, which fails to enforce password requirements for SMB filesystem access. This allows attackers to read arbitrary files under certain conditions, specifically via sessions over Wi-Fi networks or USB connections when the device is in Development Mode.

Recommendations For versions prior to 10.2.1.1925, update to version 10.2.1.1925 or later to resolve the issue. As a temporary workaround, consider disabling SMB filesystem access or restricting Wi-Fi and USB connections to minimize the risk of exploitation.