A directory traversal vulnerability in the BlackBerry Workspaces Server could potentially allow an attacker to execute or upload arbitrary files, or reveal the content of arbitrary files anywhere on the web server by crafting a URL with a manipulated POST request.
2017-10-16T21:29:00.277
2025-04-20T01:37:25.860
Deferred
CVSSv3.0: 9.8 (CRITICAL)
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.6
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | blackberry | workspaces_vapp | 5.5.0 | Yes |
| Application | blackberry | workspaces_vapp | 5.5.1 | Yes |
| Application | blackberry | workspaces_vapp | 5.5.2 | Yes |
| Application | blackberry | workspaces_vapp | 5.5.3 | Yes |
| Application | blackberry | workspaces_vapp | 5.5.4 | Yes |
| Application | blackberry | workspaces_vapp | 5.5.5 | Yes |
| Application | blackberry | workspaces_vapp | 5.5.6 | Yes |
| Application | blackberry | workspaces_vapp | 5.5.7 | Yes |
| Application | blackberry | workspaces_vapp | 5.5.8 | Yes |
| Application | blackberry | workspaces_vapp | 5.5.9 | Yes |
| Application | blackberry | workspaces_vapp | 5.6.0 | Yes |
| Application | blackberry | workspaces_vapp | 5.6.1 | Yes |
| Application | blackberry | workspaces_vapp | 5.6.2 | Yes |
| Application | blackberry | workspaces_vapp | 5.6.3 | Yes |
| Application | blackberry | workspaces_vapp | 5.6.4 | Yes |
| Application | blackberry | workspaces_vapp | 5.6.5 | Yes |
| Application | blackberry | workspaces_vapp | 5.6.6 | Yes |
| Application | blackberry | workspaces_appliance-x | ≤ 1.11.2 | Yes |