CVE-2019-12868

Name of the Vulnerable Software and Affected Versions MISP version 2.4.109

Description The issue allows remote command execution by a super administrator due to the use of the PHP file exists function with user-controlled entries. Specifically, phar:// URLs can trigger deserialization, leading to the vulnerability.

Recommendations For MISP version 2.4.109, consider restricting access to the app/Model/Server.php file until a patch is available, and avoid using user-controlled entries with the file exists function to minimize the risk of exploitation.