Vulnerability Description
A vulnerability, which was classified as problematic, has been found in Teleopti WFM up to 7.1.0. Affected by this issue is some unknown functionality of the component Administration. The manipulation as part of JSON leads to information disclosure (Credentials). The attack may be launched remotely. The exploit has been disclosed to the public and may be used. It is recommended to apply a patch to fix this issue.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Calabrio | Teleopti Workforce Management | >= 6.9, <= 7.1.0 |
Related Weaknesses (CWE)
References
- http://seclists.org/fulldisclosure/2017/Feb/13ExploitMailing ListThird Party Advisory
- https://vuldb.com/?id.96806Third Party Advisory
- http://seclists.org/fulldisclosure/2017/Feb/13ExploitMailing ListThird Party Advisory
- https://vuldb.com/?id.96806Third Party Advisory
FAQ
What is CVE-2017-20110?
CVE-2017-20110 is a vulnerability with a CVSS score of 4.3 (MEDIUM). A vulnerability, which was classified as problematic, has been found in Teleopti WFM up to 7.1.0. Affected by this issue is some unknown functionality of the component Administration. The manipulation...
How severe is CVE-2017-20110?
CVE-2017-20110 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-20110?
Check the references section above for vendor advisories and patch information. Affected products include: Calabrio Teleopti Workforce Management.