CVE-2019-9482

Published: Mar 1, 2019

Modified: Aug 4, 2024

PUBLISHED

Description

In MISP 2.4.102, an authenticated user can view sightings that they should not be eligible for. Exploiting this requires access to the event that has received the sighting. The issue affects instances with restrictive sighting settings (event only / sighting reported only).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/MISP/MISP/commit/c69969329d197bcdd04832b03310fa73f4eb7155

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2019-9482

Description

Affected Products

References