Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-64093
HistoryApr 22, 2022 - 12:00 a.m.

MISP Cross-Site Scripting Vulnerability (CNVD-2022-64093)

2022-04-2200:00:00
China National Vulnerability Database
www.cnvd.org.cn
15

0.001 Low

EPSS

Percentile

34.9%

MISP is an open source software solution. The product is used to collect, store, distribute, and share network security metrics and has features such as threat network security event analysis and malware analysis. cross-site scripting vulnerability exists in versions prior to MISP 2.4.158, which stems from a lack of data validation filtering of user-supplied data and output in galaxy clusters. An attacker could use this vulnerability to execute JavaScript code on the client side.

CPENameOperatorVersion
misp misplt2.4.158

0.001 Low

EPSS

Percentile

34.9%

Related for CNVD-2022-64093