CVE Catalog

CVE-2026-12812

LowCVSS 3.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.20%

9th percentile — higher than 9% of all known CVEs

Summary

A vulnerability has been detected in Radware Cyber Controller up to version 10.11.0, affecting an unknown part of the HTML Report Generation component. The manipulation leads to HTML injection, allowing for remote exploitation.

Risk Assessment

Remote exploitation of this vulnerability could lead to serious security breaches, including system takeover. The public disclosure of the exploit increases the risk of attacks.

Recommendation

It is recommended to update Radware Cyber Controller to the latest version to mitigate this vulnerability. Additionally, monitor systems for unauthorized activities.

Original NVD description (English source)

A security vulnerability has been detected in Radware Cyber Controller up to 10.11.0. This affects an unknown part of the component HTML Report Generation. The manipulation leads to HTML injection. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS