{"containers":{"cna":{"affected":[{"defaultStatus":"unaffected","product":"QNX Software Development Platform (QNX SDP)","vendor":"BlackBerry","versions":[{"status":"affected","version":"6.6.0"}]}],"datePublic":"2017-11-14T05:00:00.000Z","descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>In BlackBerry QNX Software Development Platform (SDP) 6.6.0, the default configuration of the QNX SDP system did not in all circumstances prevent attackers from modifying the GOT or PLT tables with buffer overflow attacks.</p>"}],"value":"In BlackBerry QNX Software Development Platform (SDP) 6.6.0, the default configuration of the QNX SDP system did not in all circumstances prevent attackers from modifying the GOT or PLT tables with buffer overflow attacks."}],"impacts":[{"capecId":"CAPEC-679","descriptions":[{"lang":"en","value":"CAPEC-679 Exploitation of Improperly Configured or Implemented Memory Protections"}]}],"metrics":[{"cvssV3_1":{"attackComplexity":"HIGH","attackVector":"LOCAL","availabilityImpact":"NONE","baseScore":1.9,"baseSeverity":"LOW","confidentialityImpact":"NONE","integrityImpact":"LOW","privilegesRequired":"HIGH","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-693","description":"CWE-693 Protection mechanism failure","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"dbe78b00-5e7b-4fda-8748-329789ecfc5c","shortName":"blackberry","dateUpdated":"2025-07-22T15:25:07.257Z"},"references":[{"tags":["x_refsource_CONFIRM"],"url":"http://support.blackberry.com/kb/articleDetail?articleNumber=000046674"}],"source":{"discovery":"UNKNOWN"},"title":"Incomplete vulnerability mitigations","x_generator":{"engine":"Vulnogram 0.2.0"},"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"secure@blackberry.com","DATE_PUBLIC":"2017-11-14T00:00:00","ID":"CVE-2017-3893","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"QNX Software Development Platform (QNX SDP)","version":{"version_data":[{"version_value":"6.6.0"}]}}]},"vendor_name":"BlackBerry"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"In BlackBerry QNX Software Development Platform (SDP) 6.6.0, the default configuration of the QNX SDP system did not in all circumstances prevent attackers from modifying the GOT or PLT tables with buffer overflow attacks."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"Flawed vulnerability mitigation"}]}]},"references":{"reference_data":[{"name":"http://support.blackberry.com/kb/articleDetail?articleNumber=000046674","refsource":"CONFIRM","url":"http://support.blackberry.com/kb/articleDetail?articleNumber=000046674"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-05T14:39:41.483Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://support.blackberry.com/kb/articleDetail?articleNumber=000046674"}]}]},"cveMetadata":{"assignerOrgId":"dbe78b00-5e7b-4fda-8748-329789ecfc5c","assignerShortName":"blackberry","cveId":"CVE-2017-3893","datePublished":"2017-11-14T21:00:00.000Z","dateReserved":"2016-12-21T00:00:00.000Z","dateUpdated":"2025-07-22T15:25:07.257Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}