CVE-2013-3692 Information

Description

BlackBerry 10 OS before 10.0.10.648 on BlackBerry Z10 smartphones uses weak permissions for a BlackBerry Protect object which allows physically proximate attackers to bypass intended access restrictions by leveraging a user’s BlackBerry Protect password-reset request and a user’s installation of a crafted application.

Reference

http://www.blackberry.com/btsc/KB34458 https://exchange.xforce.ibmcloud.com/vulnerabilities/85878