A remote code execution vulnerability in the BMP image codec of BlackBerry QNX SDP version(s) 6.4 to 7.1 could allow an attacker to potentially execute code in the context of the affected process.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HBlackberry Qnx Software Development Platform
APPBlackberry6.4.0 – 7.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
Related vulnerabilities
CVE-2025-2474CRITICAL9.8PL ✓ten sam produkt
Out-of-bounds write w kodeku PCX w BlackBerry QNX SDP — RCE i DoS
CVE-2024-48856CRITICAL9.8PL ✓ten sam produkt
Out-of-bounds write w kodeku PCX w BlackBerry QNX SDP — RCE i DoS
CVE-2024-35213CRITICAL9.0PL ✓ten sam produkt
Podatność improper input validation w SGI Image Codec QNX SDP
CVE-2021-22156CRITICAL9.0ten sam produkt
An integer overflow vulnerability in the calloc() function of the C runtime library of affected versions of Bl...
CVE-2020-6932CRITICAL10.0ten sam produkt
An information disclosure and remote code execution vulnerability in the slinger web server of the BlackBerry ...