PT-2021-14874 · Blackberry · Blackberry Uem

Published

2021-05-13

Updated

2021-05-21

CVE-2021-22153

CVSS v3.1

7.3

High

Vector

AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: BlackBerry UEM versions 12.13.1 QF2 and earlier BlackBerry UEM versions 12.12.1a QF6 and earlier

Description: A Remote Code Execution issue in the Management Console component could allow an attacker to cause the spreadsheet application to run commands on the victim's local machine with the authority of the user.

Recommendations: For versions 12.13.1 QF2 and earlier, update to a version later than 12.13.1 QF2. For versions 12.12.1a QF6 and earlier, update to a version later than 12.12.1a QF6.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1236

Related Identifiers

CVE-2021-22153

Affected Products

Blackberry Uem

PT-2021-14874 · Blackberry · Blackberry Uem

CVE-2021-22153

Weakness Enumeration

Related Identifiers

Affected Products

References · 3