CVE-2026-12812
LowCVSS 3.5Exploitation Probability (EPSS)
Low risk9th percentile — higher than 9% of all known CVEs
Summary
A vulnerability has been detected in Radware Cyber Controller up to version 10.11.0, affecting an unknown part of the HTML Report Generation component. The manipulation leads to HTML injection, allowing for remote exploitation.
Risk Assessment
Remote exploitation of this vulnerability could lead to serious security breaches, including system takeover. The public disclosure of the exploit increases the risk of attacks.
Recommendation
It is recommended to update Radware Cyber Controller to the latest version to mitigate this vulnerability. Additionally, monitor systems for unauthorized activities.
Original NVD description (English source)
A security vulnerability has been detected in Radware Cyber Controller up to 10.11.0. This affects an unknown part of the component HTML Report Generation. The manipulation leads to HTML injection. Remote exploitation of the attack is possible. The exploit has been disclosed publicly and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

