CVE-2014-1469
 
Severity Score
4.9
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
BlackBerry Enterprise Server 5.x before 5.0.4 MR7 and Enterprise Service 10.x before 10.2.2 log cleartext credentials during exception handling, which allows local users to obtain sensitive information by reading the exception log file.
BlackBerry Enterprise Server 5.x anterior a 5.0.4 MR7 y Enterprise Service 10.x anterior a 10.2.2 registran las credenciales en texto plano durante el manejo de excepciones, lo que permite a usuarios locales obtener informaciĆ³n sensible mediante la lectura del fichero del registro de excepciones.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2014-01-15 CVE Reserved
- 2014-08-18 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-310: Cryptographic Issues
CAPEC
References (4)
URL | Tag | Source |
---|---|---|
http://secunia.com/advisories/60154 | Third Party Advisory | |
http://www.securityfocus.com/bid/69211 | Vdb Entry | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/95264 | Vdb Entry |
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://www.blackberry.com/btsc/KB36175 | 2017-08-29 |
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Blackberry Search vendor "Blackberry" | Blackberry Enterprise Service Search vendor "Blackberry" for product "Blackberry Enterprise Service" | 10.0 Search vendor "Blackberry" for product "Blackberry Enterprise Service" and version "10.0" | - |
Affected
| ||||||
Blackberry Search vendor "Blackberry" | Blackberry Enterprise Service Search vendor "Blackberry" for product "Blackberry Enterprise Service" | 10.1.0 Search vendor "Blackberry" for product "Blackberry Enterprise Service" and version "10.1.0" | - |
Affected
| ||||||
Blackberry Search vendor "Blackberry" | Blackberry Enterprise Service Search vendor "Blackberry" for product "Blackberry Enterprise Service" | 10.1.2 Search vendor "Blackberry" for product "Blackberry Enterprise Service" and version "10.1.2" | - |
Affected
| ||||||
Blackberry Search vendor "Blackberry" | Blackberry Enterprise Service Search vendor "Blackberry" for product "Blackberry Enterprise Service" | 10.2.0 Search vendor "Blackberry" for product "Blackberry Enterprise Service" and version "10.2.0" | - |
Affected
| ||||||
Blackberry Search vendor "Blackberry" | Blackberry Enterprise Service Search vendor "Blackberry" for product "Blackberry Enterprise Service" | 10.2.1 Search vendor "Blackberry" for product "Blackberry Enterprise Service" and version "10.2.1" | - |
Affected
| ||||||
Blackberry Search vendor "Blackberry" | Enterprise Server Search vendor "Blackberry" for product "Enterprise Server" | <= 5.0.4 Search vendor "Blackberry" for product "Enterprise Server" and version " <= 5.0.4" | mr6, exchange_server |
Affected
| ||||||
Blackberry Search vendor "Blackberry" | Enterprise Server Search vendor "Blackberry" for product "Enterprise Server" | <= 5.0.4 Search vendor "Blackberry" for product "Enterprise Server" and version " <= 5.0.4" | mr6, groupwise |
Affected
| ||||||
Blackberry Search vendor "Blackberry" | Enterprise Server Search vendor "Blackberry" for product "Enterprise Server" | <= 5.0.4 Search vendor "Blackberry" for product "Enterprise Server" and version " <= 5.0.4" | mr6, lotus_domino |
Affected
| ||||||
Blackberry Search vendor "Blackberry" | Enterprise Server Express Search vendor "Blackberry" for product "Enterprise Server Express" | 5.0.4 Search vendor "Blackberry" for product "Enterprise Server Express" and version "5.0.4" | exchange_server |
Affected
| ||||||
Blackberry Search vendor "Blackberry" | Enterprise Server Express Search vendor "Blackberry" for product "Enterprise Server Express" | 5.0.4 Search vendor "Blackberry" for product "Enterprise Server Express" and version "5.0.4" | lotus_domino |
Affected
|