CVE-2023-21520 Information

Description

A PII Enumeration via Credential Recovery in the Self Service (Credential Recovery) of BlackBerry AtHoc version 7.15 could allow an attacker to potentially associate a list of contact details with an AtHoc IWS organization.

Reference

https://http://support.blackberry.com/kb/articleDetail?articleNumber=000112406