CVE-2021-25324

on github

Published

January 19, 2021

Severity

CVSS v3:

6.1 MEDIUM

CVSS v2:

4.3 MEDIUM

Description

MISP 2.4.136 has Stored XSS in the galaxy cluster view via a cluster name to app/View/GalaxyClusters/view.ctp.

References

https://github.com/MISP/MISP/commit/741243f707cac7de1a3769a38e03004f037f4a3d

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:misp:misp:2.4.136:::::::*	n/a	n/a	2.4.136

External Links

NVD - CVE-2021-25324