CVE-2018-19817

Vulnerability

Reflected Cross-Site Scripting (XSS) vulnerability exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The flaw resides in the /VPortal/mgtconsole/AdminAuthorisationFrame.jsp page, where the ConnPoolName and GroupId parameters are not properly sanitized before being reflected back to the user. This allows an attacker to inject arbitrary HTML and JavaScript code.

Exploitation

An attacker can craft a malicious URL containing a payload in the ConnPoolName or GroupId parameter. The victim must be tricked into clicking the link while authenticated to the VistaPortal application. No special privileges are required beyond the victim's session. The injected script executes in the context of the victim's browser session.

Impact

Successful exploitation leads to arbitrary JavaScript execution in the victim's browser. This can result in session hijacking, defacement, or theft of sensitive information displayed on the page. The attack is limited to the scope of the affected application and the victim's session.

Mitigation

As of the publication date (December 2018), no official patch has been released by InfoVista. Users should apply input validation and output encoding for the affected parameters as a workaround. The vendor may have addressed this in later versions; consult the vendor's advisory for updates. [1]