VYPR
Unrated severityOSV Advisory· Published Mar 1, 2019· Updated Aug 4, 2024

CVE-2019-9482

CVE-2019-9482

Description

In MISP 2.4.102, an authenticated user can view sightings that they should not be eligible for. Exploiting this requires access to the event that has received the sighting. The issue affects instances with restrictive sighting settings (event only / sighting reported only).

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Misp/MispOSV2 versions
    v0.2, v2.3.0, v2.4.0, …+ 1 more
    • (no CPE)range: v0.2, v2.3.0, v2.4.0, …
    • (no CPE)range: = 2.4.102

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.