Vulnerability Description
An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX Software Development Platform version(s) 6.4.0 to 7.0, QNX Momentics all 6.3.x versions, QNX OS for Safety versions 1.0.0 to 1.0.2, QNX OS for Safety versions 2.0.0 to 2.0.1, QNX for Medical versions 1.0.0 to 1.1.1, and QNX OS for Medical version 2.0.0 could allow an attacker to potentially access data, modify behavior, or permanently crash the system.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Blackberry | Qnx Momentics | 6.3.0 |
| Blackberry | Qnx Software Development Platform | >= 6.4.0, <= 7.0 |
| Blackberry | Qnx Os For Medical | >= 1.0, < 1.1.2 |
| Blackberry | Qnx Os For Safety | >= 1.0.0, < 1.0.3 |
Related Weaknesses (CWE)
References
- http://support.blackberry.com/kb/articleDetail?articleNumber=000090868PatchVendor Advisory
- http://support.blackberry.com/kb/articleDetail?articleNumber=000090868PatchVendor Advisory
FAQ
What is CVE-2021-32025?
CVE-2021-32025 is a vulnerability with a CVSS score of 8.1 (HIGH). An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX Software Development Platform version(s) 6.4.0 to 7.0, QNX Momentics all 6.3.x versions, QNX OS for Safet...
How severe is CVE-2021-32025?
CVE-2021-32025 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-32025?
Check the references section above for vendor advisories and patch information. Affected products include: Blackberry Qnx Momentics, Blackberry Qnx Software Development Platform, Blackberry Qnx Os For Medical, Blackberry Qnx Os For Safety.