{"cve":{"cve_id":"CVE-2017-9369","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.00561,"epss_percentile":0.42203,"epss_as_of":"2026-06-23","description":"In BlackBerry QNX Software Development Platform (SDP) 6.6.0 and 6.5.0 SP1 and earlier, an information disclosure vulnerability in the default configuration of the QNX SDP could allow an attacker to gain information relating to memory layout of higher privileged processes by manipulating environment variables that influence the loader.","published_at":"2017-11-14T21:00:00Z","last_modified_at":null,"cvss_v3_score":3.8,"cvss_v3_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N","cvss_v3_severity":"LOW","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-200"],"nvd_references":["http://support.blackberry.com/kb/articleDetail?articleNumber=000046674"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:10:22.565999Z"},"effective_severity":"LOW","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"L","value_label":"Low"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"C","value_label":"Changed"},{"metric":"C","name":"Confidentiality","value":"L","value_label":"Low"},{"metric":"I","name":"Integrity","value":"N","value_label":"None"},{"metric":"A","name":"Availability","value":"N","value_label":"None"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"blackberry","vendor_name":"BlackBerry","product_slug":"qnx-software-development-platform-sdp","product_name":"QNX Software Development Platform (SDP)","version_start":"6.6.0","version_start_inclusive":true,"version_end":"6.6.0","version_end_inclusive":true,"cpe23_uri":"cve5:blackberry:qnx-software-development-platform-sdp:6.6.0:6.6.0"},{"vendor_slug":"blackberry","vendor_name":"BlackBerry","product_slug":"qnx-software-development-platform-sdp","product_name":"QNX Software Development Platform (SDP)","version_start":"6.5.0 SP1 and earlier","version_start_inclusive":true,"version_end":"6.5.0 SP1 and earlier","version_end_inclusive":true,"cpe23_uri":"cve5:blackberry:qnx-software-development-platform-sdp:6.5.0 SP1 and earlier:6.5.0 SP1 and earlier"}],"exploit_refs":[],"news":[],"references":[{"url":"http://support.blackberry.com/kb/articleDetail?articleNumber=000046674","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2017-11-14T21:00:00Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T16:57:08.569530Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T16:57:08.569530Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T16:57:08.569530Z","label":"CVSS score revised","source":"cvelistv5"}]}