CVE-2020-23446 Verint Workforce Optimization (WFO)

Vulnerable Software: Verint Workforce Optimization (WFO)

Vulnerability: Unauthenticated Information Disclosure via API

Affected Version: 15.1 (15.1.0.37634)

Vendor Homepage: Link

CVE:  2020-23446

CVE Author: Tejas Nitin Pingulkar

Exploit Available: POC Available

About Affected Software:

Verint Workforce Optimization is a suite of unified software and services for capturing interactions and managing the performance of employees across the enterprise or in targeted areas of your business, including:

  • Back-office operations
  • Branch operations
  • Contact centers
  • Financial trading rooms

Additional Information:

Verint WFO application provides functionality to download topology reports to authenticated users, however, using direct object reference/API unauthenticated attacker can obtain reports.

Exploit:

Access URL:  [IP/Domain]/wfo/rest/em-api/v1/topology/generation

Note: only most recently generated report can be obtained by the attacker

Patch: Patched in version 15.2

POC: 




Timeline:

2 May 2019 – Informed about vulnerability to Telligent.

3 May 2019 – Initial response.

3 May 2019 – Vulnerability reported.

3 May 2019 – Telligent forwarded details to WFO team.

7 May 2019 – followup with WFO

9 May 2019 – Telligent team confirmed that they will update soon

21 May 2019 – followup with WFO

21 May 2019 – followup with Telligent Team

21 May 2019 – email acknowledgment from Verint (WFO Team)

29 May 2019 – followup with WFO

29 May 2019 – followup with Telligent Team

29 May 2019 – Telligent Team replied back

30 May to till date – No response from both Team vulnerability was patched in 15.2 but no acknowledgment

17 September 2019- Vulnerability Published

Comments

Post a Comment

Popular posts from this blog

CVE-2020-13474: NCH Express Accounts- Privilege Escalation

Image
  Vulnerable Software:  NCH  Express Accounts Vulnerability:  Privilege Escalation Affected Version:   8.24 and prior Vendor Homepage:   https://www.nchsoftware.com/ CVE:  CVE-2020-13474 CVE Author:  Tejas Nitin Pingulkar Exploit Available:   Y es About Affected Software Express Accounts is professional business accounting software, perfect for small businesses needing to document and report on incoming and outgoing cash flow including sales, receipts, payments and purchases. Additional Information NCH express Accounts software allows to access it over the web. A web interface provides 3 types of user Administrator User Viewer The administrator user has access to all modules including Create new invoice,  Create new quote, Create new sales order, Create new purchase order, Apply customers payment, View Credit notes, Enter new account payable, view chart of accounts, Make a payment, Receive a payment, Add new item, Add new customer, ...
Read more

CVE-2020-13475: NCH accounts-Cross Site Scripting

Image
  Vulnerable Software:  Express Account Vulnerability:  XSS Affected Version:  from 8.06 to 8.24 Vendor Homepage:   https://www.nchsoftware.com/ CVE:  CVE-2020-13475 CVE Author:  Tejas Nitin Pingulkar Exploit Available:   POC Available Patch Status:  Unpatched About Affected Software: Express Accounts is professional business accounting software, perfect for small businesses needing to document and report on incoming and outgoing cash flow including sales, receipts, payments and purchases. Exploit 1>Login as admin Use any of below payload IP:PORT/invoicelist?type=czalc’%3e%3cscript%3ealert(1)%3c%2fscript%3eqb6nc IP:PORT/ invoicedelete?type=mctf8″>%3e%3cscript%3ealert(1)%3c%2fscript%3eqb6ncmwk0t&id=DFT3  [to render second payload click on cancel]   Proof Of Concept Timeline: Vulnerability Discovered – 7 April Initial Email Sent: 19th May 2020 — No response CVE Generated: 26 May 2020 Followup 2: 15 June 2020 — No respon...
Read more