Vulnerabilities > CVE-2023-21520 - Unspecified vulnerability in Blackberry Athoc 7.15

CVSS 5.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

blackberry

NVD

Published: 2023-09-12

Updated: 2023-09-15

Summary

A PII Enumeration via Credential Recovery in the Self Service (Credential Recovery) of BlackBerry AtHoc version 7.15 could allow an attacker to potentially associate a list of contact details with an AtHoc IWS organization.

Vulnerable Configurations

Part	Description	Count
Application	Blackberry Blackberry Athoc 7.15	1

References

https://http://support.blackberry.com/kb/articleDetail?articleNumber=000112406