Vulnerabilities > CVE-2016-3129 - Unspecified vulnerability in Blackberry Good Enterprise Mobility Server 2.2.22.25

CVSS 6.6 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

HIGH

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

high complexity

blackberry

NVD

Published: 2016-12-16

Updated: 2016-12-22

Summary

A remote shell execution vulnerability in the BlackBerry Good Enterprise Mobility Server (GEMS) implementation of the Apache Karaf command shell in GEMS versions 2.1.5.3 to 2.2.22.25 allows remote attackers to obtain local administrator rights on the GEMS server via commands executed on the Karaf command shell.

Vulnerable Configurations

Part	Description	Count
OS	Blackberry Blackberry Good Enterprise Mobility Server 2.2.22.25	1

References

http://support.blackberry.com/kb/articleDetail?articleNumber=000038814&language=None
http://www.securityfocus.com/bid/94959