📦

qnx_momentics

Vendor: blackberry

Actively Exploited 0 CISA KEV List

PoC / Exploits 1 Code Available

Total RCEs 1 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 0.87% Exploit Prob.

Latest CVE CVE-2021-32025 Mar 10

Security Vulnerability Index

Page 1 / 1

8.1 CVSS

CVE-2021-32025

An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX Software Development Platform version(s) 6.4.0 to 7.0, QNX Momentics all 6.3.x versions, QNX OS for Safety versions 1.0.0 to 1.0.2, QNX OS for Safety versions 2.0.0 to 2.0.1, QNX for Medical versions 1.0.0 to 1.1.1, and QNX OS for Medical version 2.0.0 could allow an attacker to potentially access data, modify behavior, or permanently crash the system.

EPSS: 0.03%

Severity: HIGH

Mar 10, 2022

9.3 CVSS

CVE-2008-3024

RCE Exploit Found

Stack-based buffer overflow in phgrafx in QNX Momentics (aka RTOS) 6.3.2 and earlier allows local users to gain privileges via a long .pal filename in palette/.

EPSS: 1.70%

Severity: HIGH

Jul 07, 2008

Displaying 2 of 2 Total Entries

Total 1 Sections