High severity8.1OSV Advisory· Published Sep 12, 2017· Updated Jun 17, 2026
CVE-2017-14337
CVE-2017-14337
Description
When MISP before 2.4.80 is configured with X.509 certificate authentication (CertAuth) in conjunction with a non-MISP external user management ReST API, if an external user provides X.509 certificate authentication and this API returns an empty value, the unauthenticated user can be granted access as an arbitrary user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3Patches
Vulnerability mechanics
References
2- github.com/MISP/MISP/commit/be111a470204a974c50682054c9c7d4b94396ed9nvdThird Party Advisory
- www.circl.lu/advisory/CVE-2017-14337/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.