CVE-2017-3890

Name of the Vulnerable Software and Affected Versions BlackBerry WatchDox Server components Appliance-X version 1.8.1 and earlier BlackBerry WatchDox Server components vAPP versions 4.6.0 through 5.4.1

Description A reflected cross-site scripting issue allows remote attackers to execute script commands in the context of the affected browser by persuading a user to click an attacker-supplied malicious link.

Recommendations For Appliance-X version 1.8.1 and earlier, update to a version later than 1.8.1. For vAPP versions 4.6.0 through 5.4.1, update to a version later than 5.4.1.