15 matches found
CVE-2023-48655
An issue was discovered in MISP before 2.4.176. app/Controller/Component/IndexFilterComponent.php does not properly filter out query parameters...
CVE-2023-48658
An issue was discovered in MISP before 2.4.176. app/Model/AppModel.php lacks a checkParam function for alphanumerics, underscore, dash, period, and space...
CVE-2023-48655
An issue was discovered in MISP before 2.4.176. app/Controller/Component/IndexFilterComponent.php does not properly filter out query parameters...
CVE-2023-48659
An issue was discovered in MISP before 2.4.176. app/Controller/AppController.php mishandles parameter parsing...
CVE-2023-48658
An issue was discovered in MISP before 2.4.176. app/Model/AppModel.php lacks a checkParam function for alphanumerics, underscore, dash, period, and space...
MISP Security Vulnerabilities
MISP is an open source software solution. The product is used to collect, store, distribute, and share cybersecurity metrics and has features such as threat cybersecurity event analysis and malware analysis. A security vulnerability exists in MISP versions prior to 2.4.176, which stems from the...
PT-2023-30879 · Misp · Misp
Name of the Vulnerable Software and Affected Versions: MISP versions prior to 2.4.176 Description: An issue was discovered in the app/Model/AppModel.php file, where it lacks a checkParam function for characters such as alphanumerics, underscore, dash, period, and space. Recommendations: For...
MISP Security Vulnerabilities
MISP is an open source software solution. The product is used to collect, store, distribute, and share cybersecurity metrics and has features such as threat cybersecurity event analysis and malware analysis. A security vulnerability exists in MISP versions prior to 2.4.176 that stems from filters...
CVE-2023-48655
An issue was discovered in MISP before 2.4.176. app/Controller/Component/IndexFilterComponent.php does not properly filter out query parameters...
PT-2023-30880 · Misp · Misp
Name of the Vulnerable Software and Affected Versions: MISP versions prior to 2.4.176 Description: An issue was discovered in the app/Controller/AppController.php file, where it mishandles parameter parsing. Recommendations: For versions prior to 2.4.176, update to version 2.4.176 or later to...
PT-2023-30876 · Misp · Misp
Name of the Vulnerable Software and Affected Versions: MISP versions prior to 2.4.176 Description: An issue was discovered where the app/Controller/Component/IndexFilterComponent.php file does not properly filter out query parameters. Recommendations: For versions prior to 2.4.176, update to...
PT-2023-30877 · Misp · Misp
Name of the Vulnerable Software and Affected Versions: MISP versions prior to 2.4.176 Description: An issue was discovered in the app/Model/AppModel.php file, where it mishandles order clauses. Recommendations: For versions prior to 2.4.176, update to version 2.4.176 or later to resolve the issue...
MISP Security Vulnerabilities
MISP is an open source software solution. The product is used to collect, store, distribute, and share cybersecurity metrics and has features such as threat cybersecurity event analysis and malware analysis. A security vulnerability exists in MISP versions prior to 2.4.176, which stems from...
PT-2023-30878 · Misp · Misp
Name of the Vulnerable Software and Affected Versions: MISP versions prior to 2.4.176 Description: An issue was discovered in the app/Model/AppModel.php file, where it mishandles filters. Recommendations: For versions prior to 2.4.176, update to version 2.4.176 or later to resolve the issue...
CVE-2023-48655
CVE-2023-48655 affects MISP versions prior to 2.4.176. The issue is in app/Controller/Component/IndexFilterComponent.php, which does not properly filter out query parameters, enabling improper handling of input. This vulnerability is documented across multiple sources (Red Hat, NVD, OSV, CVE list...