CVE-2025-12455 MEDIUM

CVE-2025-12455: Username Enumeration Observable Response Discrepancy vulnerability has been discovered in OpenText™ Vertica.

Vendor Opentext™
Product Vertica
Weakness CWE-204
Published March 13, 2026
Last update March 13, 2026

CVSS base score

5.1/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:L/SI:N/SA:N/S:N/AU:Y/R:U

What the vulnerability does

01Description

Observable response discrepancy vulnerability in OpenText™ Vertica allows Password Brute Forcing.   The vulnerability could lead to Password Brute Forcing in Vertica management console application.This issue affects Vertica: from 10.0 through 10.X, from 11.0 through 11.X, from 12.0 through 12.X.

Key dates

02Disclosure timeline

March 13, 2026 CVE published
March 13, 2026 Record updated