CyberSec.Space Logo
返回 CVE 浏览器

CVE-2021-32025

HIGH
8.1
CVSS Severity Score
EPSS Score0.1510%
EPSS Percentile29.32th
Published2022年3月10日
Last Modified2025年8月22日

Vulnerability Description

An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX Software Development Platform version(s) 6.4.0 to 7.0, QNX Momentics all 6.3.x versions, QNX OS for Safety versions 1.0.0 to 1.0.2, QNX OS for Safety versions 2.0.0 to 2.0.1, QNX for Medical versions 1.0.0 to 1.1.1, and QNX OS for Medical version 2.0.0 could allow an attacker to potentially access data, modify behavior, or permanently crash the system.

Affected Platforms (CPE)

📦
Blackberry

Qnx Momentics

= 6.3.0
📦
Blackberry

Qnx Momentics

= 6.3.2
📦
Blackberry

Qnx Software Development Platform

>= 6.4.0 and <= 7.0
💻
Blackberry

Qnx Os For Medical

>= 1.0 and < 1.1.2
💻
Blackberry

Qnx Os For Medical

= 2.0.0
💻
Blackberry

Qnx Os For Safety

>= 1.0.0 and < 1.0.3
💻
Blackberry

Qnx Os For Safety

>= 2.0.0 and < 2.0.2

References & Advisories

🔗 http://support.blackberry.com/kb/articleDetail?articleNumber=000090868
🔗 http://support.blackberry.com/kb/articleDetail?articleNumber=000090868

相关漏洞威胁

CVE-2008-30249.3

Stack-based buffer overflow in phgrafx in QNX Momentics (aka RTOS) 6.3.2 and earlier allows local users to gain privileges via a l...

CVE-2013-26877.8

Stack-based buffer overflow in the bpe_decompress function in (1) BlackBerry QNX Neutrino RTOS through 6.5.0 SP1 and (2) QNX Momen...

CVE-2021-3467910.0

Thycotic Password Reset Server before 5.3.0 allows credential disclosure.

CVE-2021-021110.0

An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon ...