Title

The BlackBerry UEM server must be maintained at a supported version. (Cat I impact)

Discussion

Versions of BlackBerry UEM are maintained by BlackBerry for specific periods of time. Unsupported versions will not receive security updates for new vulnerabilities which leaves them subject to exploitation. A list of supported UEM versions is maintained by BlackBerry here: https://www.blackberry.com/us/en/support/software-support-life-cycle. SFR ID: FPT_TUD_EXT.1

Check Content

Review the UEM console version, via the help page. Correlate the version with the latest supported version of UEM. If the installed version of UEM is not a supported version, this is a finding.

Fix Text

The administrator must check https://www.blackberry.com/uk/en/support/software-support-life-cycle for the latest supported and unsupported versions of software. Once confirmed, the administrator must update BlackBerry UEM to the latest supported version after the following reupgrade tasks: https://docs.blackberry.com/en/endpoint-management/blackberry-uem/12_12/installation-configuration/installation-and-upgrade/ksa1400184024142 & https://docs.blackberry.com/en/endpoint-management/blackberry-uem/12_12/installation-configuration/installation-and-upgrade/ksa1400184232267/ksa1420584119147.

Additional Identifiers

Rule ID: SV-224381r604136_rule

Vulnerability ID: V-224381

Group Title: PP-MDM-992000

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.