Known Vulnerabilities
CVE-2024-10923
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in OpenText™ ALM Octane Management allows Stored XSS. The vulnerability could result in a remote code execution attack. This issue affects ALM Octane Management: from 16.2.100 through 24.4.
UNKNOWN
Published Nov 12, 2024
CVE-2023-6123
Improper Neutralization vulnerability affects OpenText ALM Octane version 16.2.100 and above. The vulnerability could result in a remote code execution attack.
HIGH
CVSS 7.5
Published Feb 15, 2024