BlackBerry Enterprise Server 5.x before 5.0.4 MR7 and Enterprise Service 10.x before 10.2.2 log cleartext credentials during exception handling, which allows local users to obtain sensitive information by reading the exception log file.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:04
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/60154 - | |
References | () http://www.blackberry.com/btsc/KB36175 - Patch, Vendor Advisory | |
References | () http://www.securityfocus.com/bid/69211 - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/95264 - |
Information
Published : 2014-08-18 11:15
Updated : 2024-11-21 02:04
NVD link : CVE-2014-1469
Mitre link : CVE-2014-1469
CVE.ORG link : CVE-2014-1469
JSON object : View
Products Affected
blackberry
- blackberry_enterprise_service
- enterprise_server
- enterprise_server_express
CWE
CWE-310
Cryptographic Issues