Known Vulnerabilities for products from Verint
Listed below are 14 of the newest known vulnerabilities associated with the vendor "Verint".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Verint can be found at device.report : Verint
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-33257 json | Verint Engagement Management 15.3 Update 2023R2 is vulnerable to HTML injection via the user data form in the live chat. | 5.4 - MEDIUM | 2023-08-02 | 2023-08-04 |
| CVE-2021-41825 json | Verint Workforce Optimization (WFO) 15.2.5.1033 allows HTML injection via the /wfo/control/signin username parameter. | 5.3 - MEDIUM | 2021-10-08 | 2022-05-03 |
| CVE-2021-36450 json | Verint Workforce Optimization (WFO) 15.2.8.10048 allows XSS via the control/my_notifications NEWUINAV parameter. | 6.1 - MEDIUM | 2021-12-15 | 2023-11-07 |
| CVE-2020-24057 json | The management website of the Verint S5120FD Verint_FW_0_42 unit features a CGI endpoint ('ipfilter.cgi') that allows the use... | 8.8 - HIGH | 2020-08-21 | 2020-08-27 |
| CVE-2020-24056 json | A hardcoded credentials vulnerability exists in Verint 5620PTZ Verint_FW_0_42, Verint 4320 V4320_FW_0_23, V4320_FW_0_31, and ... | 7.5 - HIGH | 2020-08-21 | 2021-07-21 |
| CVE-2020-24055 json | Verint 5620PTZ Verint_FW_0_42 and Verint 4320 V4320_FW_0_23, and V4320_FW_0_31 units feature an autodiscovery service impleme... | 9.8 - CRITICAL | 2020-08-21 | 2020-08-27 |
| CVE-2020-23446 json | Verint Workforce Optimization suite 15.1 (15.1.0.37634) has Unauthenticated Information Disclosure via API | 5.3 - MEDIUM | 2020-09-22 | 2021-07-21 |
| CVE-2020-13480 json | Verint Workforce Optimization (WFO) 15.2 allows HTML injection via the "send email" feature. | 5.4 - MEDIUM | 2020-06-22 | 2021-07-21 |
| CVE-2020-12744 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.8 - HIGH | 2022-10-20 | 2022-10-21 |
| CVE-2019-12784 json | An issue was discovered in Verint Impact 360 15.1. At wfo/control/signin, the login form can accept submissions from external... | 8.8 - HIGH | 2020-07-14 | 2020-07-16 |
| CVE-2019-12783 json | An issue was discovered in Verint Impact 360 15.1. At wfo/control/signin, the rd parameter can accept a URL, to which users w... | 6.1 - MEDIUM | 2020-07-14 | 2020-07-16 |
| CVE-2019-12773 json | An issue was discovered in Verint Impact 360 15.1. At wfo/help/help_popup.jsp, the helpURL parameter can be changed to embed ... | 6.1 - MEDIUM | 2020-07-14 | 2020-07-16 |
| CVE-2018-17872 json | Verba Collaboration Compliance and Quality Management Platform before 9.2.1.5545 has Insecure Permissions. | 8.8 - HIGH | 2018-10-04 | 2020-08-24 |
| CVE-2018-17871 json | Verba Collaboration Compliance and Quality Management Platform before 9.2.1.5545 has Incorrect Access Control. | 6.5 - MEDIUM | 2018-10-04 | 2020-09-29 |
Known software with vulnerabilities from Verint
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Verint | Impact 360 | 15.1 |
| Hardware | Verint | S5120fd | - |
| Operating System | Verint | S5120fd Firmware | verint_fw_0_42 |
| Application | Verint | Verba Collaboration Compliance And Quality Management Platform | 7.0 |
| Application | Verint | Workforce Optimization | 15.1.0.37634 |