Misp: >> Misp >> 2.4.197 Security Vulnerabilities
app/Model/Attribute.php in MISP before 2.4.198 ignores an ACL during a GUI attribute search.
CVSS Score
4.3
EPSS Score
0.001
Published
2025-02-14
app/Controller/UserLoginProfilesController.php in MISP before 2.4.198 does not prevent an org admin from viewing sensitive login fields of another org admin in the same org.
CVSS Score
4.9
EPSS Score
0.001
Published
2024-09-15