CVE-2024-10923

UNKNOWN

Published 2024-11-12T16:55:11.548Z

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2024-10923. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in OpenText™ ALM Octane Management allows Stored XSS. The vulnerability could result in a remote code execution attack.

This issue affects ALM Octane Management: from 16.2.100 through 24.4.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

OpenText™

ALM Octane Management

Affected Versions:

16.2.100

opentext

alm_octane

Affected Versions:

16.2.100

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-3wr4-2chq-phgj

Advisory Details

CVSS Scoring

CVSS Score

7.5

CVSS Vector


                                    CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2024-10923

WEB https://portal.microfocus.com/s/article/KM000036146?language=en_US

Advisory provided by GitHub Security Advisory Database. Published: November 12, 2024, Modified: November 14, 2024

References

https://portal.microfocus.com/s/article/KM000036146?language=en_US

Published: 2024-11-12T16:55:11.548Z

Last Modified: 2024-11-21T16:20:14.503Z

Copied to clipboard!

CVE-2024-10923

Expert Analysis

Description

Available Exploits

Related News

Affected Products

ALM Octane Management

Affected Versions:

alm_octane

Affected Versions:

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

CVSS Vector

References

References

Request Analysis

What to expect

Request Received!