216.73.217.172

CVE-2025-12454

· Published 13/03/2026 19:53 · Modified 13/03/2026 19:53

Labels: CVE-2025-12454 2026-03-13CVE-2025-12454CWE-79[email protected]

Essential information

Published
13/03/2026 19:53
Modified
13/03/2026 19:53
Author
Creator
CVSS
5.1 MEDIUM (v3) 5.1 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in OpenText™ Vertica allows Reflected XSS.  The vulnerability could lead to Reflected XSS attack of cross-site scripting in Vertica management console application.This issue affects Vertica: from 10.0 through 10.X, from 11.0 through 11.X, from 12.0 through 12.X, from 23.0 through 23.X, from 24.0 through 24.X, from 25.1.0 through 25.1.X.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
opentext / vertica cpe:2.3:a:opentext:vertica:10.0-10.x:*:*:*:*:*:*:*
opentext / vertica cpe:2.3:a:opentext:vertica:11.0-11.x:*:*:*:*:*:*:*
opentext / vertica cpe:2.3:a:opentext:vertica:12.0-12.x:*:*:*:*:*:*:*
opentext / vertica cpe:2.3:a:opentext:vertica:23.0-23.x:*:*:*:*:*:*:*
opentext / vertica cpe:2.3:a:opentext:vertica:24.0-24.x:*:*:*:*:*:*:*
opentext / vertica cpe:2.3:a:opentext:vertica:25.1.0-25.1.x:*:*:*:*:*:*:*

References