Security Advisory

CVE-2023-21521

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-12 18:18:34
Last updated 2024-09-26 13:39:44
Assigner blackberry
State PUBLISHED

Description

An SQL Injection vulnerability in the Management Console  (Operator Audit Trail) of BlackBerry AtHoc version 7.15 could allow an attacker to potentially read sensitive data from the database, modify database data (Insert/Update/Delete), execute administration operations on the database, recover the content of a given file present on the DBMS file system and in some cases issue commands to the operating system.