← Back to CVEs
CVE-2017-9369
LOW3.8
Description
In BlackBerry QNX Software Development Platform (SDP) 6.6.0 and 6.5.0 SP1 and earlier, an information disclosure vulnerability in the default configuration of the QNX SDP could allow an attacker to gain information relating to memory layout of higher privileged processes by manipulating environment variables that influence the loader.
CVE Details
CVSS v3.1 Score3.8
SeverityLOW
CVSS VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N
Attack VectorLOCAL
ComplexityLOW
Privileges RequiredLOW
User InteractionNONE
Published11/14/2017
Last Modified8/26/2025
Sourcenvd
Honeypot Sightings0
Affected Products
blackberry:qnx_software_development_platform
Weaknesses (CWE)
CWE-200CWE-200
References
http://support.blackberry.com/kb/articleDetail?articleNumber=000046674(secure@blackberry.com)
http://support.blackberry.com/kb/articleDetail?articleNumber=000046674(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.