What is CVE-2020-6932?

CVE-2020-6932 is a critical-severity vulnerability in Blackberry Qnx Software Development Platform (Sdp), classified under CWE-150. CVSS score: 10.0/10. Published 2020-08-12.

How severe is CVE-2020-6932?

Critical severity. CVSS v3 base score is 10.0 out of 10.

Vulnerability in Blackberry Qnx Software Development Platform (Sdp)

CVE-2020-6932

An information disclosure and remote code execution vulnerability in the slinger web server of the BlackBerry QNX Software Development Platform versions 6.4.0 to 6.6.0 could allow an attacker to potentially read arbitrary files and run arb…

EPSS: 0.036 (88.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 10.0 (Critical). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L.

Affected products

Blackberry Qnx Software Development Platform (Sdp) — versions 6.4.0

Weakness classification (CWE)

CWE-150

References

support.blackberry.com/kb/articleDetail (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-6932?: CVE-2020-6932 is a critical-severity vulnerability in Blackberry Qnx Software Development Platform (Sdp), classified under CWE-150. CVSS score: 10.0/10. Published 2020-08-12.
How severe is CVE-2020-6932?: Critical severity. CVSS v3 base score is 10.0 out of 10.