CVE-2025-15563

Publication date

2026-02-19 11:01:56

Family

SEC-VLab

State

PUBLISHED

Description

Any unauthenticated user can reset the WorkTime on-prem database configuration by sending a specific HTTP request to the WorkTime server. No authorization check is applied here.