CVE-2018-19766

Vulnerability

Reflected Cross-Site Scripting (XSS) exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The vulnerability is located in the GroupRessourceAdmin.jsp page, where the ConnPoolName parameter is not properly sanitized before being reflected in the response. This allows an attacker to inject arbitrary HTML and JavaScript code. [1]

Exploitation

An attacker can exploit this vulnerability by crafting a malicious URL containing a payload in the ConnPoolName parameter. The victim must be tricked into clicking the crafted link, which then executes the injected script in the context of the victim's browser session. No authentication is required to trigger the reflection, but the victim must be logged into the application for the script to access sensitive session data. [1]

Impact

Successful exploitation allows the attacker to execute arbitrary JavaScript in the victim's browser, potentially leading to session hijacking, credential theft, or defacement. The attack is limited to the scope of the affected page and the victim's session. [1]

Mitigation

As of the publication date (2018-12-17), no official patch or mitigation has been disclosed by InfoVista. Users should consider applying input validation and output encoding for the ConnPoolName parameter, or restrict access to the vulnerable page until a fix is available. [1]