NVD

Id
85908  
Name
CVE-2017-3894  
Description
A stored cross site scripting vulnerability in the Management Console of BlackBerry Unified Endpoint Manager version 12.6.1 and earlier, and all versions of BES12, allows attackers to execute actions in the context of a Management Console administrator by uploading a malicious script and then persuading a target administrator to view the specific location of the malicious script within the Management Console.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-07-18  
Published
2017-05-10  
Modified Date
2017-07-07  
Seq
2017-3894  

Actions

Related NVD References

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
67692 JVNDB-2017-003981 BlackBerry Unified Endpoint Manager におけるクロスサイトスクリプティングの脆弱性 BlackBerry Unified Endpoint Manager には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2017-3894 0 CVE-2017-3894 85908 4.3 6.1 http://jvndb.jvn.jp/ja/contents/2017/JVNDB-2017-003981.html 2017-05-09 2017-06-13 View