VYPR
Medium severity6.1NVD Advisory· Published Apr 22, 2016· Updated Jun 17, 2026

CVE-2016-3126

CVE-2016-3126

Description

Cross-site scripting (XSS) vulnerability in the Management Console in BlackBerry Enterprise Server (BES) 12 before 12.4.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

Affected products

2
  • cpe:2.3:a:blackberry:enterprise_server:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:blackberry:enterprise_server:*:*:*:*:*:*:*:*range: <=12.4
    • (no CPE)range: <12.4.1

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.