CVE-2016-3127

Name of the Vulnerable Software and Affected Versions BlackBerry Good Control Server versions prior to 2.3.53.62

Description The issue is related to an information disclosure vulnerability in the logging implementation. This allows remote attackers to gain access to logged encryption keys by obtaining certain diagnostic log files, either through a valid logon or an unrelated server compromise. The attackers can then use these keys to access certain resources within a customer's Good deployment.

Recommendations For versions prior to 2.3.53.62, update to version 2.3.53.62 or later to resolve the issue.