CVE-2023-24070

on github

Published

January 23, 2023

Severity

CVSS v3:

6.1 MEDIUM

CVSS v2:

N/A

Description

app/View/AuthKeys/authkey_display.ctp in MISP through 2.4.167 has an XSS in authkey add via a Referer field.

References

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:misp-project:malware_information_sharing_platform::::::::	n/a	2.4.167 (including)	*

External Links

NVD - CVE-2023-24070