CVE-2021-32023

EUVD-2021-18890
An elevation of privilege vulnerability in the message broker of BlackBerry Protect for Windows version(s) versions 1574 and earlier could allow an attacker to potentially execute code in the context of a BlackBerry Cylance service that has admin rights on the system.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 15%
Affected Products (NVD)
VendorProductVersion
blackberryprotect
𝑥
≤ 1574
𝑥
= Vulnerable software versions
References
https://support.blackberry.com/kb/articleDetail?articleNumber=000088685
https://support.blackberry.com/kb/articleDetail?articleNumber=000088685