CVE-2024-6484

CVE-2024-6484 is a security vulnerability that is still awaiting full analysis and scoring.

Key facts

Description

Rejected reason: This was not a security issue in Bootstrap. Bootstrap’s JavaScript is not intended to sanitize unsafe or intentionally dangerous HTML. As such, the reported behavior fell outside the scope of Bootstrap’s security model, and the associated CVE has been rescinded.

Frequently asked questions

What is CVE-2024-6484?
Rejected reason: This was not a security issue in Bootstrap. Bootstrap’s JavaScript is not intended to sanitize unsafe or intentionally dangerous HTML. As such, the reported behavior fell outside the scope of Bootstrap’s security model, and the associated CVE has been rescinded.
Is CVE-2024-6484 being actively exploited?
It is not currently listed in CISA's Known Exploited Vulnerabilities catalog, and no EPSS exploit-prediction score is available yet.
How do I fix CVE-2024-6484?
Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
Does CVE-2024-6484 have an EU (EUVD) identifier?
Yes. CVE-2024-6484 is tracked in the ENISA EU Vulnerability Database (EUVD) as EUVD-2024-2311.
When was CVE-2024-6484 published?
CVE-2024-6484 was published on 2024-07-11 and last updated on 2025-08-01.