Rejected reason: This was not a security issue in Bootstrap. Bootstrap’s JavaScript is not intended to sanitize unsafe or intentionally dangerous HTML. As such, the reported behavior fell outside the scope of Bootstrap’s security model, and the associated CVE has been rescinded.
https://www.herodevs.com/vulnerability-directory/cve-2024-6484
Published: 2024-07-11
Updated: 2025-08-01
Base Score: 6.6
Vector: CVSS2#AV:N/AC:H/Au:N/C:C/I:P/A:P
Base Score: 6.4
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:L/A:L
Base Score: 5.3
Vector: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:L
Severity: Medium
EPSS: 0.00088