CVE-2018-8889

A directory traversal vulnerability in the Connect Service of the BlackBerry Enterprise Mobility Server (BEMS) 2.8.17.29 and earlier could allow an attacker to retrieve arbitrary files in the context of a BEMS administrator account.

Date published : 2018-09-19

http://support.blackberry.com/kb/articleDetail?articleNumber=000051590&language=en_US