CVE-2017-9367

Summary

A directory traversal vulnerability in the BlackBerry Workspaces Server could potentially allow an attacker to execute or upload arbitrary files, or reveal the content of arbitrary files anywhere on the web server by crafting a URL with a manipulated POST request.

Affected Software

VendorProductVersion RangeStatus
BlackBerryWorkspaces ServerBlackBerry Workspaces Server components Appliance-X 1.11.0 to 1.11.2, vApp versions 5.6.0 to 5.6.6, and vApp versions 5.5.9 and earlieraffected

Weaknesses

  • Directory traversal

ADP Enrichment

CVE Program Container

Additional References

References