Approved changes feed: RSS · Atom
cpe:2.3:a:opentext:vertica:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Opentext (5717091c-f148-5db6-be32-940ef0cdacf9) |
|---|---|
| Product | Vertica (9bf12aee-b645-5155-8de1-cc3d811ff18f) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-12455 |
vulnerable | 2026-06-03 14:58:44.381148 |
Username Enumeration Observable Response Discrepancy vulnerability has been discovered in OpenText™ Vertica.
Observable response discrepancy vulnerability in OpenText™ Vertica allows Password Brute Forcing.
The vulnerability could lead to Password Brute Forcing in Vertica management console application.This issue affects Vertica: from 10.0 through 10.X, from 11.0 through 11.X, from 12.0 through 12.X.
Published: 2026-03-13T18:30:27.903Z
Updated: 2026-03-13T19:33:40.096Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-12454 |
vulnerable | 2026-06-03 14:58:44.380600 |
Improper neutralization of input during web page generation vulnerability has been discovered in OpenText™ Vertica.
Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in OpenText™ Vertica allows Reflected XSS.
The vulnerability could lead to Reflected XSS attack of cross-site scripting in Vertica management console application.This issue affects Vertica: from 10.0 through 10.X, from 11.0 through 11.X, from 12.0 through 12.X, from 23.0 through 23.X, from 24.0 through 24.X, from 25.1.0 through 25.1.X.
Published: 2026-03-13T18:30:40.822Z
Updated: 2026-03-13T19:33:59.150Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-12453 |
vulnerable | 2026-06-03 14:58:44.380042 |
Improper neutralization of input during web page generation vulnerability has been discovered in OpenText™ Vertica.
Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in OpenText™ Vertica allows Reflected XSS.
The vulnerability could lead to Reflected XSS attack of cross-site scripting in Vertica management console application.This issue affects Vertica: from 10.0 through 10.X, from 11.0 through 11.X, from 12.0 through 12.X, from 23.0 through 23.X, from 24.0 through 24.X, from 25.1.0 through 25.1.X, from 25.2.0 through 25.2.X, from 25.3.0 through 25.3.X.
Published: 2026-03-13T18:30:53.495Z
Updated: 2026-03-13T19:34:21.690Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-6360 |
vulnerable | 2026-06-03 14:58:02.709303 |
Incorrect Permission Assignment for Critical Resource vulnerability has been discovered in OpenText™ Vertica.
Incorrect Permission Assignment for Critical Resource vulnerability in OpenText™ Vertica could allow Privilege Abuse and result in unauthorized access or privileges to Vertica agent apikey.
This issue affects Vertica: from 10.0 through 10.X, from 11.0 through 11.X, from 12.0 through 12.X, from 23.0 through 23.X, from 24.0 through 24.X.
Published: 2024-10-02T15:19:15.457Z
Updated: 2024-10-02T16:30:37.533Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-7248 |
vulnerable | 2026-06-03 14:54:00.300300 |
OpenText Vertica Management console might be prone to bypass via crafted requests
MEDIUM (5)
Certain functionality in OpenText Vertica Management console might be prone to bypass via crafted requests.
The vulnerability would affect one of Vertica’s authentication functionalities by allowing specially crafted requests and sequences.
This issue impacts the following Vertica Management Console versions:
10.x
11.1.1-24 or lower
12.0.4-18 or lower
Please upgrade to one of the following Vertica Management Console versions:
10.x to upgrade to latest versions from below.
11.1.1-25
12.0.4-19
23.x
24.x
Published: 2024-03-15T19:30:27.419Z
Updated: 2024-08-02T08:57:35.093Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2017-5802 |
vulnerable | 2026-06-03 14:37:26.403826 |
Details available
A Remote Gain Privileged Access vulnerability in HPE Vertica Analytics Platform version v4.1 and later was found.
Published: 2018-02-15T22:00:00.000Z
Updated: 2024-09-16T18:08:08.732Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2016-2002 |
vulnerable | 2026-06-03 14:35:36.381528 |
Details available
The validateAdminConfig handler in the Analytics Management Console in HPE Vertica 7.0.x before 7.0.2.12, 7.1.x before 7.1.2-12, and 7.2.x before 7.2.2-1 allows remote attackers to execute arbitrary commands via the mcPort parameter, aka ZDI-CAN-3417.
Published: 2016-04-20T17:00:00.000Z
Updated: 2024-08-05T23:17:49.986Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.