CVE-2017-9370
First published: Wed Aug 09 2017(Updated: )
An information disclosure / elevation of privilege vulnerability in the BlackBerry Workspaces Server could potentially allow an attacker who has legitimate access to BlackBerry Workspaces to gain access to another user's workspace by making multiple login requests to the server.
Credit: secure@blackberry.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| BlackBerry Workspaces |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-9370?
CVE-2017-9370 is classified as an information disclosure and elevation of privilege vulnerability.
How do I mitigate CVE-2017-9370?
To mitigate CVE-2017-9370, ensure appropriate access controls and monitor login attempts to detect suspicious behavior.
Who is affected by CVE-2017-9370?
CVE-2017-9370 affects users of the BlackBerry Workspaces Server who have legitimate access.
What could an attacker gain from exploiting CVE-2017-9370?
An attacker exploiting CVE-2017-9370 could gain unauthorized access to another user's workspace.
When was CVE-2017-9370 disclosed?
CVE-2017-9370 was disclosed in 2017.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/references
- agent/weakness
- agent/last-modified-date
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- vendor/blackberry
- canonical/blackberry workspaces