This page lists publicly disclosed CVE vulnerabilities affecting blackberry workspaces_vapp (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2017-9368 | An information disclosure vulnerability in the BlackBerry Workspaces Server could result in an attacker gaining access to source code for server-side applications by crafting a request for specific files. | [email protected] | 7.5 | 0.31% | 2017-10-16 | 2026-05-13 |
| CVE-2017-9367 | A directory traversal vulnerability in the BlackBerry Workspaces Server could potentially allow an attacker to execute or upload arbitrary files, or reveal the content of arbitrary files anywhere on the web server by crafting a URL with a manipulated POST request. | [email protected] | 9.8 | 0.62% | 2017-10-16 | 2026-05-13 |
| CVE-2017-3890 | A reflected cross-site scripting vulnerability in the BlackBerry WatchDox Server components Appliance-X, version 1.8.1 and earlier, and vAPP, versions 4.6.0 to 5.4.1, allows remote attackers to execute script commands in the context of the affected browser by persuading a user to click an attacker-supplied malicious link. | [email protected] | 6.1 | 0.29% | 2017-01-13 | 2026-05-13 |