BlackBerry QNX Software Development Platform
Easy fix4 remedies
cpe:2.3:a:blackberry:qnx_software_development_platform:*:*:*:*:*:*:*
Easy fix4 remedies
- 8.0
- 7.1
- 7.0
QNX SDP PCX Image Codec Out-of-Bounds Write Vulnerability Allowing Code Execution or Denial-of-Service
Vulnerability
Patched
An out-of-bounds write vulnerability has been identified in the PCX image codec component of QNX Software Development Platform (SDP) versions 8.0, 7.1, and 7.0. This vulnerability could allow an unauthenticated attacker to induce a denial-of-service condition or execute code within the context of the process using the image codec, by manipulating a PCX format image file to exploit the flaw.
Impact
Exploitation of this vulnerability could lead to a denial-of-service condition or allow for remote code execution in the context of the affected process.
Remediation
The vulnerability has been addressed in QNX SDP versions 8.0, 7.1, and 7.0. Users can update to the latest version through the QNX Software Center. QNX recommends that all affected customers apply the available updates as soon as possible.
Added: Sep 1, 2025, 7:22 PM
Updated: Sep 1, 2025, 7:22 PM
Vulnerability Rating
Custom Algorithm
spread
8.4impact
7.5exploitability
4.7remediation
7.9relevance
0.2threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.