Vulnerabilities > Verint > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-06-13 | CVE-2024-36395 | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Verint Workforce Optimization 15.2.918.262 Verint - CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) | 6.1 |
| 2023-08-02 | CVE-2023-33257 | Cross-site Scripting vulnerability in Verint Engagement Management 15.3 Verint Engagement Management 15.3 Update 2023R2 is vulnerable to HTML injection via the user data form in the live chat. | 5.4 |
| 2021-12-15 | CVE-2021-36450 | Cross-site Scripting vulnerability in Verint Workforce Optimization 15.2.8.10048 Verint Workforce Optimization (WFO) 15.2.8.10048 allows XSS via the control/my_notifications NEWUINAV parameter. | 6.1 |
| 2021-10-08 | CVE-2021-41825 | Cross-site Scripting vulnerability in Verint Workforce Optimization 15.2.5.1033 Verint Workforce Optimization (WFO) 15.2.5.1033 allows HTML injection via the /wfo/control/signin username parameter. | 5.0 |
| 2020-09-22 | CVE-2020-23446 | Unspecified vulnerability in Verint Workforce Optimization 15.1.0.37634 Verint Workforce Optimization suite 15.1 (15.1.0.37634) has Unauthenticated Information Disclosure via API | 5.0 |
| 2020-08-21 | CVE-2020-24056 | Path Traversal vulnerability in Verint 4320 Firmware, 5620Ptz Firmware and S5120Fd Firmware A hardcoded credentials vulnerability exists in Verint 5620PTZ Verint_FW_0_42, Verint 4320 V4320_FW_0_23, V4320_FW_0_31, and Verint S5120FD Verint_FW_0_42units. | 5.0 |
| 2020-07-14 | CVE-2019-12784 | Cross-Site Request Forgery (CSRF) vulnerability in Verint Impact 360 An issue was discovered in Verint Impact 360 15.1. | 6.8 |
| 2020-07-14 | CVE-2019-12783 | Open Redirect vulnerability in Verint Impact 360 An issue was discovered in Verint Impact 360 15.1. | 5.8 |
| 2020-07-14 | CVE-2019-12773 | Cross-site Scripting vulnerability in Verint Impact 360 An issue was discovered in Verint Impact 360 15.1. | 4.3 |
| 2018-10-04 | CVE-2018-17872 | Incorrect Permission Assignment for Critical Resource vulnerability in Verint products Verba Collaboration Compliance and Quality Management Platform before 9.2.1.5545 has Insecure Permissions. | 6.5 |