BlackBerry 10 OS Privilege Escalation

Medium Nessus Plugin ID 68963


The BlackBerry 10 device is affected by a privilege escalation vulnerability.


A privilege escalation vulnerability exists in Blackberry 10 devices that could allow a malicious app to take advantage of weak permissions in order to do the following :

- Gain the device password if a remote password reset command is sent through the BlackBerry Protect website.

- Intercept and prevent BlackBerry Protect commands.


BlackBerry has released an OS update that addresses this issue.

See Also

Plugin Details

Severity: Medium

ID: 68963

File Name: blackberry_10_0_10_648.nbin

Version: $Revision: 1.31 $

Type: local

Published: 2013/07/18

Modified: 2018/01/29

Dependencies: 60033

Risk Information

Risk Factor: Medium


Base Score: 6.2

Temporal Score: 4.6

Vector: CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:blackberry:blackberry_os

Required KB Items: mdm/dependency/unlocked

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2013/06/11

Vulnerability Publication Date: 2013/06/11

Reference Information

CVE: CVE-2013-3692

BID: 60544

OSVDB: 94426

IAVB: 2013-B-0068