PT-2021-20942 · Misp · Misp

Mokaddem

Published

2021-06-25

Updated

2021-07-01

CVE-2021-35502

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: MISP version 2.4.144

Description: The issue is related to the app/View/Elements/genericElements/IndexTable/Fields/generic field.ctp file in MISP, which does not properly sanitize certain data related to generic-template:index.

Recommendations: For MISP version 2.4.144, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2021-35502

Affected Products

Misp

PT-2021-20942 · Misp · Misp

CVE-2021-35502

Related Identifiers

Affected Products

References · 5