CVE-2023-24026

on github

Published

January 20, 2023

Severity

CVSS v3:

6.1 MEDIUM

CVSS v2:

N/A

Description

In MISP 2.4.167, app/webroot/js/event-graph.js has an XSS vulnerability via an event-graph preview payload.

References

https://github.com/MISP/MISP/commit/a46f794a136001101cbec84fccf3cc824e983493

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:misp-project:misp:2.4.167:::::::*	n/a	n/a	2.4.167

External Links

NVD - CVE-2023-24026