{"cve":{"cve_id":"CVE-2020-6932","is_kev":false,"kev_date_added":null,"kev_vendor_project":null,"kev_product":null,"kev_vulnerability_name":null,"kev_short_description":null,"kev_required_action":null,"kev_due_date":null,"kev_known_ransomware":null,"kev_notes":null,"kev_cwes":null,"epss_score":0.03589,"epss_percentile":0.8793,"epss_as_of":"2026-06-23","description":"An information disclosure and remote code execution vulnerability in the slinger web server of the BlackBerry QNX Software Development Platform versions 6.4.0 to 6.6.0 could allow an attacker to potentially read arbitrary files and run arbitrary executables in the context of the web server.","published_at":"2020-08-12T12:21:32Z","last_modified_at":null,"cvss_v3_score":10.0,"cvss_v3_vector":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L","cvss_v3_severity":"CRITICAL","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":null,"ssvc_automatable":null,"ssvc_technical_impact":null,"cwes":["CWE-150"],"nvd_references":["http://support.blackberry.com/kb/articleDetail?articleNumber=000061411"],"vuln_status":null,"trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:39.878444Z","updated_at":"2026-06-28T23:14:31.139277Z"},"effective_severity":"CRITICAL","badges":[],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"N","value_label":"Network"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"N","value_label":"None"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"C","value_label":"Changed"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"L","value_label":"Low"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"blackberry","vendor_name":"BlackBerry","product_slug":"qnx-software-development-platform-sdp","product_name":"QNX Software Development Platform (SDP)","version_start":"6.4.0","version_start_inclusive":true,"version_end":"6.6.0","version_end_inclusive":true,"cpe23_uri":"cve5:blackberry:qnx-software-development-platform-sdp:6.4.0:6.6.0"}],"exploit_refs":[],"news":[],"references":[{"url":"http://support.blackberry.com/kb/articleDetail?articleNumber=000061411","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2020-08-12T12:21:32Z","label":"CVE published","source":null},{"type":"cvss_changed","at":"2026-06-28T17:04:22.747685Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:04:22.747685Z","label":"CVSS score revised","source":"cvelistv5"},{"type":"cvss_changed","at":"2026-06-28T17:04:22.747685Z","label":"CVSS score revised","source":"cvelistv5"}]}