4
CVSSv2

CVE-2019-16202

Published: 10/09/2019 Updated: 11/09/2019
CVSS v2 Base Score: 4 | Impact Score: 2.9 | Exploitability Score: 8
Vector: AV:N/AC:L/Au:S/C:P/I:N/A:N

Vulnerability Summary

MISP prior to 2.4.115 allows privilege escalation in certain situations. After updating to 2.4.115, escalation attempts are blocked by the __checkLoggedActions function with a "This could be an indication of an attempted privilege escalation on older vulnerable versions of MISP (<2.4.115)" message.

Vulnerability Trend

Affected Products

Vendor Product Versions
MispMisp0.1, 0.2, 2.1, 2.1.18, 2.2.1, 2.2.2, 2.3.0, 2.3.14, 2.3.15, 2.3.16, 2.3.17, 2.3.18, 2.3.19, 2.3.20, 2.3.21, 2.3.22, 2.3.23, 2.3.24, 2.3.25, 2.3.26, 2.3.27, 2.3.28, 2.3.29, 2.3.30, 2.3.31, 2.3.32, 2.3.33, 2.3.34, 2.3.35, 2.3.36, 2.3.37, 2.3.38, 2.3.39, 2.3.40, 2.3.41, 2.3.42, 2.3.43, 2.3.44, 2.3.45, 2.3.46, 2.3.47, 2.3.48, 2.3.49, 2.3.50, 2.3.51, 2.3.52, 2.3.53, 2.3.54, 2.3.55, 2.3.56, 2.3.57, 2.3.58, 2.3.59, 2.3.60, 2.3.61, 2.3.62, 2.3.63, 2.3.64, 2.3.65, 2.3.66, 2.3.67, 2.3.68, 2.3.69, 2.3.70, 2.3.71, 2.3.72, 2.3.73, 2.3.74, 2.3.75, 2.3.76, 2.3.77, 2.3.78, 2.3.79, 2.3.80, 2.3.81, 2.3.82, 2.3.83, 2.3.84, 2.3.85, 2.3.87, 2.3.88, 2.3.89, 2.3.90, 2.3.91, 2.3.92, 2.3.93, 2.3.94, 2.3.95, 2.3.96, 2.3.97, 2.3.98, 2.3.99, 2.3.100, 2.3.101, 2.3.102, 2.3.103, 2.3.104, 2.3.105, 2.3.106, 2.3.107, 2.3.108, 2.3.109, 2.3.110, 2.3.111, 2.3.112, 2.3.113, 2.3.114, 2.3.115, 2.3.116, 2.3.117, 2.3.118, 2.3.120, 2.3.121, 2.3.122, 2.3.123, 2.3.124, 2.3.125, 2.3.126, 2.3.127, 2.3.128, 2.3.129, 2.3.130, 2.3.131, 2.3.132, 2.3.133, 2.3.134, 2.3.135, 2.3.136, 2.3.137, 2.3.138, 2.3.139, 2.3.140, 2.3.141, 2.3.142, 2.3.143, 2.3.144, 2.3.145, 2.3.146, 2.3.147, 2.3.148, 2.3.149, 2.3.150, 2.3.151, 2.3.152, 2.3.153, 2.3.154, 2.3.155, 2.3.156, 2.3.157, 2.3.158, 2.3.159, 2.3.160, 2.3.161, 2.3.162, 2.3.163, 2.3.164, 2.3.165, 2.3.166, 2.3.167, 2.3.168, 2.3.169, 2.3.170, 2.3.171, 2.3.172, 2.3.173, 2.3.174, 2.3.175, 2.3.176, 2.3.177, 2.3.178, 2.4.0, 2.4.1, 2.4.2, 2.4.3, 2.4.4, 2.4.5, 2.4.6, 2.4.7, 2.4.9, 2.4.10, 2.4.11, 2.4.12, 2.4.13, 2.4.14, 2.4.15, 2.4.16, 2.4.17, 2.4.18, 2.4.20, 2.4.21, 2.4.22, 2.4.23, 2.4.24, 2.4.25, 2.4.26, 2.4.27, 2.4.28, 2.4.29, 2.4.30, 2.4.31, 2.4.32, 2.4.33, 2.4.34, 2.4.35, 2.4.36, 2.4.37, 2.4.38, 2.4.39, 2.4.40, 2.4.41, 2.4.42, 2.4.43, 2.4.44, 2.4.45, 2.4.46, 2.4.47, 2.4.48, 2.4.49, 2.4.50, 2.4.51, 2.4.52, 2.4.53, 2.4.54, 2.4.55, 2.4.56, 2.4.57, 2.4.58, 2.4.59, 2.4.60, 2.4.61, 2.4.62, 2.4.63, 2.4.64, 2.4.65, 2.4.66, 2.4.67, 2.4.68, 2.4.69, 2.4.70, 2.4.71, 2.4.72, 2.4.73, 2.4.74, 2.4.75, 2.4.76, 2.4.77, 2.4.78, 2.4.79, 2.4.80, 2.4.81, 2.4.82, 2.4.83, 2.4.84, 2.4.85, 2.4.86, 2.4.87, 2.4.88, 2.4.89, 2.4.90, 2.4.91, 2.4.92, 2.4.93, 2.4.94, 2.4.95, 2.4.96, 2.4.97, 2.4.98, 2.4.99, 2.4.100, 2.4.101, 2.4.102, 2.4.103, 2.4.104, 2.4.105, 2.4.106, 2.4.107, 2.4.108, 2.4.109, 2.4.110, 2.4.111, 2.4.112, 2.4.113, 2.4.114