Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
7.5
CVSSv2
CVE-2022-29528
Published: 20/04/2022 Updated: 21/12/2023
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Misp
Vulnerability Summary
An issue exists in MISP prior to 2.4.158. PHAR deserialization can occur.
Vulnerability Trend
Vulnerable Product
Search on Vulmon
Subscribe to Product
misp misp
References
CWE-502
https://github.com/MISP/MISP/compare/v2.4.157...v2.4.158
https://github.com/MISP/MISP/commit/0108f1bde2117ac5c1e28d124128f60c8bb09a8e
https://github.com/MISP/MISP/commit/93821c0de6a7dd32262ce62212773f43136ca66e
https://zigrin.com/cakephp-application-cybersecurity-research-exploring-the-phar-deserialization-php-vulnerability-a-white-box-testing-example/
https://zigrin.com/advisories/misp-phar-deserialization/
https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started