PT-2024-37566 · Opentext · Opentext Alm Octane
Published
2024-08-05
·
Updated
2024-08-28
·
CVE-2024-6361
CVSS v4.0
7.3
High
| Vector | AV:L/AC:H/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/S:N/AU:N/R:A/V:C/RE:M/U:Red |
Name of the Vulnerable Software and Affected Versions
OpenText ALM Octane versions prior to 23.4
Description
The issue is related to an Improper Neutralization vulnerability, specifically a Cross-Site Scripting (XSS) vulnerability. This could potentially lead to a remote code execution attack.
Recommendations
For versions prior to 23.4, update to version 23.4 or later to resolve the issue.
Fix
XSS
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Opentext Alm Octane