1. Home
  2. CVE Database
  3. CVE-2024-10923
NONE · 0

CVE-2024-10923

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in OpenText™ ALM Octane Management allows Stored XSS. The vulnerability could result in a remo...

Vulnerability Description

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in OpenText™ ALM Octane Management allows Stored XSS. The vulnerability could result in a remote code execution attack. This issue affects ALM Octane Management: from 16.2.100 through 24.4.

Related Weaknesses (CWE)

CWE-79

References

FAQ

What is CVE-2024-10923?

CVE-2024-10923 is a documented vulnerability. Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in OpenText™ ALM Octane Management allows Stored XSS. The vulnerability could result in a remo...

How severe is CVE-2024-10923?

CVSS scoring is not yet available for CVE-2024-10923. Check NVD for updates.

Is there a patch for CVE-2024-10923?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.