exploitDog

GHSA-863h-c4v7-h5fv

Опубликовано: 28 нояб. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.2

Описание

app/Controller/EventsController.php in MISP before 2.5.24 has invalid logic in checking for uploaded file validity, related to tmp_name.

app/Controller/EventsController.php in MISP before 2.5.24 has invalid logic in checking for uploaded file validity, related to tmp_name.

Ссылки

EPSS

Процентиль: 16%

0.00051

Низкий

8.2 High

CVSS3

CVE ID

Дефекты

CWE-684

Связанные уязвимости

CVE-2025-66384

CVSS3: 8.2

nvd

2 месяца назад

app/Controller/EventsController.php in MISP before 2.5.24 has invalid logic in checking for uploaded file validity, related to tmp_name.

EPSS

Процентиль: 16%

0.00051

Низкий

8.2 High

CVSS3

CVE ID

Дефекты

CWE-684