8 matches found
EUVD-2020-7404
Malware in sbrugna...
Unspecified vulnerability in MISP (CNVD-2020-51414)
MISP is an open source software solution. The product is used to collect, store, distribute and share cybersecurity metrics and has features such as threat cybersecurity event analysis and malware analysis. A security vulnerability exists in MISP version 2.4.128, which stems from insufficient ACL...
Unspecified vulnerability in MISP (CNVD-2020-51415)
MISP is an open source software solution. The product is used to collect, store, distribute and share cybersecurity metrics and has features such as threat cybersecurity event analysis and malware analysis. A security vulnerability exists in MISP version 2.4.128, which stems from insufficient ACL...
CVE-2020-15411
An issue was discovered in MISP 2.4.128. app/Controller/AttributesController.php has insufficient ACL checks in the attachment downloader...
CVE-2020-15412
An issue was discovered in MISP 2.4.128. app/Controller/EventsController.php lacks an event ACL check before proceeding to allow a user to send an event contact form...
Design/Logic Flaw
An issue was discovered in MISP 2.4.128. app/Controller/EventsController.php lacks an event ACL check before proceeding to allow a user to send an event contact form...
CVE-2020-15412
The CVE-2020-15412 issue affects MISP 2.4.128 where app/Controller/EventsController.php lacks an event ACL check before allowing a user to submit an event contact form. This is reported across multiple sources (NVD entry and RH/CVE detail) and framed as an ACL authorization flaw in the event subm...
CVE-2020-15411
An issue was discovered in MISP 2.4.128. app/Controller/AttributesController.php has insufficient ACL checks in the attachment downloader...