Описание
An issue was discovered in MISP before 2.4.121. It mishandled time skew (between the machine hosting the web server and the machine hosting the database) when trying to block a brute-force series of invalid requests.
Ссылки
- PatchThird Party Advisory
- PatchThird Party Advisory
- PatchThird Party Advisory
- PatchThird Party Advisory
- PatchThird Party Advisory
- PatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.4.121 (исключая)
cpe:2.3:a:misp:misp:*:*:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00382
Низкий
5.9 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-367
Связанные уязвимости
github
больше 3 лет назад
An issue was discovered in MISP before 2.4.121. It mishandled time skew (between the machine hosting the web server and the machine hosting the database) when trying to block a brute-force series of invalid requests.
EPSS
Процентиль: 59%
0.00382
Низкий
5.9 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-367