Blackberry Qnx Neutrino Rtos vulnerabilities
4 known vulnerabilities affecting blackberry/qnx_neutrino_rtos.
Total CVEs
4
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2014-2533P3HIGHCVSS 7.2PoCv6.4.1v6.5.02014-03-18
CVE-2014-2533 [HIGH] CWE-264 CVE-2014-2533: /sbin/ifwatchd in BlackBerry QNX Neutrino RTOS 6.4.x and 6.5.x allows local users to gain privileges
/sbin/ifwatchd in BlackBerry QNX Neutrino RTOS 6.4.x and 6.5.x allows local users to gain privileges by providing an arbitrary program name as a command-line argument.
nvd
CVE-2013-2687P3HIGHCVSS 7.8≤ 6.5.0v6.4.1+1 more2013-07-12
CVE-2013-2687 [HIGH] CWE-119 CVE-2013-2687: Stack-based buffer overflow in the bpe_decompress function in (1) BlackBerry QNX Neutrino RTOS throu
Stack-based buffer overflow in the bpe_decompress function in (1) BlackBerry QNX Neutrino RTOS through 6.5.0 SP1 and (2) QNX Momentics Tool Suite through 6.5.0 SP1 in the QNX Software Development Platform allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted packets to TCP port 4868.
nvd
CVE-2014-2534P4MEDIUMCVSS 4.9PoCv6.4.1v6.5.02014-03-18
CVE-2014-2534 [MEDIUM] CWE-264 CVE-2014-2534: /sbin/pppoectl in BlackBerry QNX Neutrino RTOS 6.4.x and 6.5.x allows local users to obtain sensitiv
/sbin/pppoectl in BlackBerry QNX Neutrino RTOS 6.4.x and 6.5.x allows local users to obtain sensitive information by reading "bad parameter" lines in error messages, as demonstrated by reading the root password hash in /etc/shadow.
nvd
CVE-2013-2688P4MEDIUMCVSS 5.4≤ 6.5.0v6.4.1+1 more2013-07-12
CVE-2013-2688 [MEDIUM] CWE-119 CVE-2013-2688: Buffer overflow in phrelay in BlackBerry QNX Neutrino RTOS through 6.5.0 SP1 in the QNX Software Dev
Buffer overflow in phrelay in BlackBerry QNX Neutrino RTOS through 6.5.0 SP1 in the QNX Software Development Platform allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted packets to TCP port 4868 that leverage improper handling of the /dev/photon device file.
nvd