CVE-2023-37306
on github
Published
Severity
CVSS v3:
7.5 HIGH
CVSS v2:
N/A
Description
MISP 2.4.172 mishandles different certificate file extensions in server sync. An attacker can obtain sensitive information because of the nature of the error messages.
References
Configurations
CPE23 | Version Start | Version End | Exact Version |
---|---|---|---|
cpe:2.3:a:misp-project:malware_information_sharing_platform:2.4.172:*:*:*:*:*:*:* | n/a | n/a | 2.4.172 |