BlackBerry 10.x < File Sharing over Wi-Fi Authentication Bypass

Medium Nessus Plugin ID 77247


The version of BlackBerry 10 OS is affected by an authentication bypass vulnerability.


According to its version number, the BlackBerry 10 OS installed on the mobile device is prior to It is, therefore, affected by an authentication bypass vulnerability related to file sharing over Wi-Fi. An attacker on an adjacent network could exploit this to read or modify data on the device.

Note that file sharing over Wi-Fi is not enabled by default and must be enabled for the device to be affected.


Upgrade to BlackBerry or later. Otherwise, refer to the vendor's advisory for mitigation steps involving disabling or restricting file sharing.

See Also

Plugin Details

Severity: Medium

ID: 77247

File Name: blackberry_10_2_1_1925.nbin

Version: $Revision: 1.36 $

Type: local

Published: 2014/08/19

Modified: 2018/01/29

Dependencies: 60033

Risk Information

Risk Factor: Medium


Base Score: 4.3

Temporal Score: 3.7

Vector: CVSS2#AV:A/AC:M/Au:N/C:P/I:P/A:N

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:blackberry:blackberry_os

Required KB Items: mdm/dependency/unlocked

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2014/01/28

Vulnerability Publication Date: 2014/08/12

Reference Information

CVE: CVE-2014-2388

BID: 69207

OSVDB: 110062

IAVB: 2014-B-0112