exploitDog

GHSA-65hj-59g8-fjjc

Опубликовано: 20 фев. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

MISP before 2.4.166 unsafely allows users to use the order parameter, related to app/Model/Attribute.php, app/Model/GalaxyCluster.php, app/Model/Workflow.php, and app/Plugin/Assets/models/behaviors/LogableBehavior.php.

MISP before 2.4.166 unsafely allows users to use the order parameter, related to app/Model/Attribute.php, app/Model/GalaxyCluster.php, app/Model/Workflow.php, and app/Plugin/Assets/models/behaviors/LogableBehavior.php.

Ссылки

EPSS

Процентиль: 34%

0.0014

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-755

Связанные уязвимости

CVE-2022-48329

CVSS3: 9.8

nvd

почти 3 года назад

MISP before 2.4.166 unsafely allows users to use the order parameter, related to app/Model/Attribute.php, app/Model/GalaxyCluster.php, app/Model/Workflow.php, and app/Plugin/Assets/models/behaviors/LogableBehavior.php.

EPSS

Процентиль: 34%

0.0014

Низкий

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-755