Arbitrary File Retrieval Vulnerability in BlackBerry Enterprise Mobility Server (BEMS)

CVE-2018-8889 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:N/A:N

A directory traversal vulnerability in the Connect Service of the BlackBerry Enterprise Mobility Server (BEMS) 2.8.17.29 and earlier could allow an attacker to retrieve arbitrary files in the context of a BEMS administrator account.

Learn more about our Cis Benchmark Audit For Server Software.