CVE-2020-6933

MEDIUM

BlackBerry Unified Endpoint Manager <= 12.13.0 - Denial of Service via Improper Input Validation

Title source: llm
STIX 2.1

Description

An improper input validation vulnerability in the UEM Core of BlackBerry UEM version(s) 12.13.0, 12.12.1a QF2 (and earlier), and 12.11.1 QF3 (and earlier) could allow an attacker to potentially cause a Denial of Service (DoS) of the UEM Core service.

References (1)

Core 1
Core References

Scores

CVSS v3 5.5
EPSS 0.0027
EPSS Percentile 18.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-20
Status published
Products (4)
blackberry/unified_endpoint_manager 12.11.1 quick_fix1 (3 CPE variants)
blackberry/unified_endpoint_manager 12.12.1a (3 CPE variants)
blackberry/unified_endpoint_manager 12.13.0
blackberry/unified_endpoint_manager < 12.11.1
Published Oct 14, 2020
Tracked Since Feb 18, 2026