CVE-2024-12021

Vulnerability Description

Coverity versions prior to 2024.9.0 are vulnerable to stored cross-site scripting (XSS) in various administrative interfaces. The impact of exploitation may result in the compromise of local accounts managed by the Coverity platform as well as other standard impacts resulting from cross-site scripting.

Related Weaknesses (CWE)

CWE-79

References

https://community.blackduck.com/s/article/Black-Duck-Product-Security-Advisory-C

FAQ

What is CVE-2024-12021?

CVE-2024-12021 is a documented vulnerability. Coverity versions prior to 2024.9.0 are vulnerable to stored cross-site scripting (XSS) in various administrative interfaces. The impact of exploitation may result in the compromise of local accounts ...

How severe is CVE-2024-12021?

CVSS scoring is not yet available for CVE-2024-12021. Check NVD for updates.

Is there a patch for CVE-2024-12021?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.