CyberSec.Space Logo
Back to CVE Browser

CVE-2019-8998

HIGH
7.8
CVSS Severity Score
EPSS Score0.0720%
EPSS Percentile34.73th
PublishedJul 12, 2019
Last ModifiedAug 22, 2025

Vulnerability Description

An information disclosure vulnerability leading to a potential local escalation of privilege in the procfs service (the /proc filesystem) of BlackBerry QNX Software Development Platform version(s) 6.5.0 SP1 and earlier could allow an attacker to potentially gain unauthorized access to a chosen process address space.

Affected Platforms (CPE)

📦
Blackberry

Qnx Software Development Platform

<= 6.5.0

References & Advisories

🔗 http://support.blackberry.com/kb/articleDetail?articleNumber=000057178
🔗 http://support.blackberry.com/kb/articleDetail?articleNumber=000057178

Related Vulnerabilities

CVE-2020-693210.0

An information disclosure and remote code execution vulnerability in the slinger web server of the BlackBerry QNX Software Develop...

CVE-2017-38919.6

In BlackBerry QNX Software Development Platform (SDP) 6.6.0, an elevation of privilege vulnerability in the default configuration ...

CVE-2021-221569.0

An integer overflow vulnerability in the calloc() function of the C runtime library of affected versions of BlackBerry® QNX Softwa...

CVE-2021-320258.1

An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX Software Development Platform versi...