VYPR
Unrated severityNVD Advisory· Published Jun 30, 2020· Updated Aug 4, 2024

CVE-2020-15412

CVE-2020-15412

Description

An issue was discovered in MISP 2.4.128. app/Controller/EventsController.php lacks an event ACL check before proceeding to allow a user to send an event contact form.

Affected products

2
  • MISP/MISPdescription
  • Misp/Mispllm-fuzzy
    Range: = 2.4.128

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.