Vulnerability Details CVE-2019-8998
An information disclosure vulnerability leading to a potential local escalation of privilege in the procfs service (the /proc filesystem) of BlackBerry QNX Software Development Platform version(s) 6.5.0 SP1 and earlier could allow an attacker to potentially gain unauthorized access to a chosen process address space.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 19.3%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.6
References
Products affected by CVE-2019-8998
-
cpe:2.3:a:blackberry:qnx_software_development_platform:-
-
cpe:2.3:a:blackberry:qnx_software_development_platform:6.4.0
-
cpe:2.3:a:blackberry:qnx_software_development_platform:6.4.1
-
cpe:2.3:a:blackberry:qnx_software_development_platform:6.5.0