CVE-2019-8997

Name: CVE-2019-8997
Creator: NVD / NIST
Published: 2019-03-21T18:29:00.613+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 2.32%

Last modified Jun 17, 2026

CVE-2019-8997 is a vulnerability of currently unknown severity. An XML External Entity Injection (XXE) vulnerability in the Management System (console) of BlackBerry AtHoc versions earlier than 7.6 HF-567 could allow an attacker to potentially read arbitrary local files from the application server or make requests on the network by entering maliciously crafted XML in an existing field.. EPSS estimates a 2.32% chance of exploitation in the next 30 days.

Description

An XML External Entity Injection (XXE) vulnerability in the Management System (console) of BlackBerry AtHoc versions earlier than 7.6 HF-567 could allow an attacker to potentially read arbitrary local files from the application server or make requests on the network by entering maliciously crafted XML in an existing field.

Metrics

EPSS Probability

2.32%

81.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-611

Affected Software

Vendor	Product	Versions
Blackberry	Athoc	< 7.6_hf-567

References

http://support.blackberry.com/kb/articleDetail?articleNumber=000047227Vendor Advisory
http://support.blackberry.com/kb/articleDetail?articleNumber=000047227Vendor Advisory

Timeline

Published: Mar 21, 2019
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2019-8997?

How severe is CVE-2019-8997?

Severity scoring for CVE-2019-8997 is pending analysis. The EPSS model estimates a 2.32% probability of exploitation in the next 30 days.

How do I fix CVE-2019-8997?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-8997?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST