Lucene search

Workforce Optimization Security Vulnerabilities

cve

CVE-2021-36450

Verint Workforce Optimization (WFO) 15.2.8.10048 allows XSS via the control/my_notifications NEWUINAV...

6.1CVSS

5.9AI Score

0.002EPSS

2021-12-15 07:15 AM

cve

CVE-2021-44228

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can control log messages or log message....

10CVSS

9.8AI Score

0.976EPSS

2021-12-10 10:15 AM

3638

In Wild

399

cve

CVE-2021-41825

Verint Workforce Optimization (WFO) 15.2.5.1033 allows HTML injection via the /wfo/control/signin username...

5.3CVSS

5.4AI Score

0.001EPSS

2021-10-08 04:15 PM

cve

CVE-2020-23446

Verint Workforce Optimization suite 15.1 (15.1.0.37634) has Unauthenticated Information Disclosure via...

5.3CVSS

5.2AI Score

0.002EPSS

2020-09-22 02:15 PM

cve

CVE-2020-13480

Verint Workforce Optimization (WFO) 15.2 allows HTML injection via the "send email"...

5.4CVSS

5.7AI Score

0.001EPSS

2020-06-22 06:15 PM