CVE-2025-12455— Username Enumeration Observable Response Discrepancy vulnerability has been discovered in OpenText™ Vertica.
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2025-12455
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Username Enumeration Observable Response Discrepancy vulnerability has been discovered in OpenText™ Vertica.
Source: NVD (National Vulnerability Database)
Vulnerability Description
Observable response discrepancy vulnerability in OpenText™ Vertica allows Password Brute Forcing. The vulnerability could lead to Password Brute Forcing in Vertica management console application.This issue affects Vertica: from 10.0 through 10.X, from 11.0 through 11.X, from 12.0 through 12.X.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
响应差异性信息暴露
Source: NVD (National Vulnerability Database)
Vulnerability Title
OpenText Vertica 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
OpenText Vertica是加拿大OpenText的一款关系型数据库管理系统(RDBMS),它可以高效地存储海量数据。 OpenText Vertica 10.X及之前版本、11.X及之前版本和12.X及之前版本存在安全漏洞,该漏洞源于可观察的响应差异,可能导致密码暴力破解攻击。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2025-12455
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2025-12455
请登录查看更多情报信息。
Same Patch Batch · OpenText™ · 2026-03-13 · 3 CVEs total
| CVE-2025-12453 | Improper neutralization of input during web page generation vulnerability has been discove | |
| CVE-2025-12454 | Improper neutralization of input during web page generation vulnerability has been discove |
IV. Related Vulnerabilities
Same product: Vertica
Same vendor: OpenText™
- CVE-2026-3278
XSS Vulnerability discovered in OpenText™ ZENworks Service D - CVE-2025-12453
Improper neutralization of input during web page generation - CVE-2025-12454
Improper neutralization of input during web page generation - CVE-2026-3266
Improper access control vulnerability has been discovered in - CVE-2025-9120
RCE vulnerability has been discovered in OpenText™ Carbonite
Same weakness: CWE-204
- CVE-2026-8242
Industrial Application Software IAS Canias ERP Login RMI doA - CVE-2026-20195
Cisco Identity Services Engine Observable Response Discrepan - CVE-2026-24468
OpenAEV Vulnerable to Username/Email Enumeration Through Dif - CVE-2026-34264
Information Disclosure vulnerability in SAP Human Capital Ma - CVE-2026-4113
SonicWALL SMA1000 安全漏洞
V. Comments for CVE-2025-12455
No comments yet