CVE-2017-17442

Name of the Vulnerable Software and Affected Versions: BlackBerry UEM Management Console versions 12.7.1 and earlier

Description: A reflected cross-site scripting issue could allow an attacker to execute script commands in the context of the affected UEM Management Console account. This can be achieved by crafting a malicious link and persuading a user with legitimate access to the Management Console to click on it.

Recommendations: For versions 12.7.1 and earlier, update to a version later than 12.7.1 to resolve the issue. As a temporary workaround, consider restricting access to the Management Console to minimize the risk of exploitation. Avoid clicking on suspicious links, especially those from untrusted sources, to prevent potential attacks.