LOW🇵🇱 Wersja polska

CVE-2017-9371

CVSS 2.6v3.1pub. 2017-11-14upd. 2026-05-13

In BlackBerry QNX Software Development Platform (SDP) 6.6.0 and 6.5.0 SP1 and earlier, a loss of integrity vulnerability in the default configuration of the QNX SDP could allow an attacker being able to reduce the entropy of the PRNG, making other blended attacks more practical by gaining control over environmental factors that influence seed generation.

CVSS Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
  • Blackberry Qnx Software Development Platform

    APP
    Blackberry
    6.5.06.6.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-2474CRITICAL9.8PL ✓ten sam produkt

Out-of-bounds write w kodeku PCX w BlackBerry QNX SDP — RCE i DoS

CVE-2024-48856CRITICAL9.8PL ✓ten sam produkt

Out-of-bounds write w kodeku PCX w BlackBerry QNX SDP — RCE i DoS

CVE-2024-35213CRITICAL9.0PL ✓ten sam produkt

Podatność improper input validation w SGI Image Codec QNX SDP

CVE-2021-32024CRITICAL9.8ten sam produkt

A remote code execution vulnerability in the BMP image codec of BlackBerry QNX SDP version(s) 6.4 to 7.1 could...

CVE-2021-22156CRITICAL9.0ten sam produkt

An integer overflow vulnerability in the calloc() function of the C runtime library of affected versions of Bl...