High severity8.2NVD Advisory· Published Nov 28, 2025· Updated Apr 15, 2026
CVE-2025-66384
CVE-2025-66384
Description
app/Controller/EventsController.php in MISP before 2.5.24 has invalid logic in checking for uploaded file validity, related to tmp_name.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.