CVE-2025-12453

Published: Mar 13, 2026

Modified: Mar 13, 2026

PUBLISHED

Description

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in OpenText™ Vertica allows Reflected XSS. The vulnerability could lead to Reflected XSS attack of cross-site scripting in Vertica management console application.This issue affects Vertica: from 10.0 through 10.X, from 11.0 through 11.X, from 12.0 through 12.X, from 23.0 through 23.X, from 24.0 through 24.X, from 25.1.0 through 25.1.X, from 25.2.0 through 25.2.X, from 25.3.0 through 25.3.X.

Vendor	Product	Versions
OpenText™	Vertica	affected `10.0 - <= 10.x` affected `11.0 - <= 11.x` affected `12.0 - <= 12.x` affected `23.0 - <= 23.x` affected `24.0 - <= 24.x` +3 more versions

Weaknesses (CWE)

CWE-79

References

https://portal.microfocus.com/s/article/KM000045852?language=en_US

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-12453

Description

Affected Products

Weaknesses (CWE)

References