CVE-2018-19774

Vulnerability

A reflected cross-site scripting (XSS) vulnerability exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The issue is located in the PresentSpace.jsp page, where the GroupId and ConnPoolName parameters are not properly sanitized before being reflected back to the user. An attacker can inject arbitrary JavaScript code via these parameters, which will be executed in the context of the victim's browser session. [1]

Exploitation

An attacker can craft a malicious URL containing the XSS payload in either the GroupId or ConnPoolName parameter and trick a victim into clicking the link. No authentication is required to trigger the reflected XSS. The attacker does not need any special network position beyond delivering the link to the victim (e.g., via email, social media, or other means). [1]

Impact

Successful exploitation allows the attacker to execute arbitrary JavaScript in the victim's browser. This can lead to session hijacking, credential theft, defacement, or redirection to malicious sites. The impact is limited to the browser context and does not directly compromise the server, but it can affect users of the VistaPortal application. [1]

Mitigation

As of the publication date (2018-12-17), no vendor patch or fix has been released for this vulnerability. Users should consider input validation and output encoding as a workaround, or restrict access to the affected page. The vulnerability is listed in the CVE database, but no fix version is known. [1]