Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2022-48329

Published: 20/02/2023 Updated: 28/02/2023
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 0
Subscribe to Misp

Vulnerability Summary

MISP prior to 2.4.166 unsafely allows users to use the order parameter, related to app/Model/Attribute.php, app/Model/GalaxyCluster.php, app/Model/Workflow.php, and app/Plugin/Assets/models/behaviors/LogableBehavior.php.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

misp misp

References

CWE-755https://github.com/MISP/MISP/compare/v2.4.165...v2.4.166https://github.com/MISP/MISP/commit/a73c1c461bc6f8a048eae92b5e99823afd892d1ehttps://github.com/MISP/MISP/commit/afbe08d256d609eee5195c5b0003cfb723ae7af1https://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925CVE-2023-41826LFICVE-2022-22364CVE-2024-2887command injectionremote code executionCVE-2024-34446CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook