CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-11562

An issue was discovered in MISP 2.4.91. A vulnerability in app/View/Elements/eventattribute.ctp allows reflected XSS if a user clicks on a malicious link for an event view and then clicks on the deleted attributes quick filter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 47.2%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

https://github.com/MISP/MISP/commit/10080096879d1076756f62760d6daf582b6db722
https://github.com/MISP/MISP/commit/10080096879d1076756f62760d6daf582b6db722

Products affected by CVE-2018-11562

Misp » Misp » Version: 2.4.91

cpe:2.3:a:misp:misp:2.4.91

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-11562

Products

Pricing

Contact Us