VYPR
Unrated severityNVD Advisory· Published Feb 9, 2024· Updated Aug 26, 2024

CVE-2024-25674

CVE-2024-25674

Description

An issue was discovered in MISP before 2.4.184. Organisation logo upload is insecure because of a lack of checks for the file extension and MIME type.

Affected products

2
  • Misp/Mispcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <2.4.184

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.