CVE-2024-10923

Improper Neutralization vulnerability has been discovered in OpenText™ ALM Octane Management.

Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in OpenText™ ALM Octane Management allows Stored XSS. The vulnerability could result in a remote code execution attack. This issue affects ALM Octane Management: from 16.2.100 through 24.4.

INFO

Published Date :

2024-11-12T16:55:11.548Z

Last Modified :

2024-11-21T16:20:14.503Z

Source :

OpenText

AFFECTED PRODUCTS

The following products are affected by CVE-2024-10923 vulnerability.

Vendors	Products
Opentext	Alm Octane

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-10923.

URL	Resource
https://portal.microfocus.com/s/article/KM000036146?language=en_US

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability