Blackberry Workspaces Appliance-X vulnerabilities

CVE-2017-9367 [CRITICAL] CWE-22 CVE-2017-9367: A directory traversal vulnerability in the BlackBerry Workspaces Server could potentially allow an a A directory traversal vulnerability in the BlackBerry Workspaces Server could potentially allow an attacker to execute or upload arbitrary files, or reveal the content of arbitrary files anywhere on the web server by crafting a URL with a manipulated POST request.

CVE-2017-9368 [HIGH] CWE-200 CVE-2017-9368: An information disclosure vulnerability in the BlackBerry Workspaces Server could result in an attac An information disclosure vulnerability in the BlackBerry Workspaces Server could result in an attacker gaining access to source code for server-side applications by crafting a request for specific files.