CVE-2025-12453

Name of the Vulnerable Software and Affected Versions OpenText Vertica versions 10.0 through 10.X OpenText Vertica versions 11.0 through 11.X OpenText Vertica versions 12.0 through 12.X OpenText Vertica versions 23.0 through 23.X OpenText Vertica versions 24.0 through 24.X OpenText Vertica versions 25.1.0 through 25.1.X OpenText Vertica versions 25.2.0 through 25.2.X OpenText Vertica versions 25.3.0 through 25.3.X

Description The software contains an improper neutralization of input during web page generation, leading to a reflected cross-site scripting (XSS) condition. This issue can result in a reflected XSS attack targeting the Vertica management console application. Cross-site scripting occurs when an application includes malicious code in its output, which is then executed by a user's browser.

Recommendations OpenText Vertica versions 10.0 through 10.X: At the moment, there is no information about a newer version that contains a fix for this vulnerability. OpenText Vertica versions 11.0 through 11.X: At the moment, there is no information about a newer version that contains a fix for this vulnerability. OpenText Vertica versions 12.0 through 12.X: At the moment, there is no information about a newer version that contains a fix for this vulnerability. OpenText Vertica versions 23.0 through 23.X: At the moment, there is no information about a newer version that contains a fix for this vulnerability. OpenText Vertica versions 24.0 through 24.X: At the moment, there is no information about a newer version that contains a fix for this vulnerability. OpenText Vertica versions 25.1.0 through 25.1.X: At the moment, there is no information about a newer version that contains a fix for this vulnerability. OpenText Vertica versions 25.2.0 through 25.2.X: At the moment, there is no information about a newer version that contains a fix for this vulnerability. OpenText Vertica versions 25.3.0 through 25.3.X: At the moment, there is no information about a newer version that contains a fix for this vulnerability.