CVE-2020-6933
MEDIUMBlackBerry Unified Endpoint Manager <= 12.13.0 - Denial of Service via Improper Input Validation
Title source: llmDescription
An improper input validation vulnerability in the UEM Core of BlackBerry UEM version(s) 12.13.0, 12.12.1a QF2 (and earlier), and 12.11.1 QF3 (and earlier) could allow an attacker to potentially cause a Denial of Service (DoS) of the UEM Core service.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://support.blackberry.com/kb/articleDetail?articleNumber=000068112
Scores
CVSS v3
5.5
EPSS
0.0027
EPSS Percentile
18.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-20
Status
published
Products (4)
blackberry/unified_endpoint_manager
12.11.1 quick_fix1 (3 CPE variants)
blackberry/unified_endpoint_manager
12.12.1a (3 CPE variants)
blackberry/unified_endpoint_manager
12.13.0
blackberry/unified_endpoint_manager
< 12.11.1
Published
Oct 14, 2020
Tracked Since
Feb 18, 2026