CVE-2023-24070

CVSS V2 None CVSS V3 None
Description
app/View/AuthKeys/authkey_display.ctp in MISP through 2.4.167 has an XSS in authkey add via a Referer field.
Overview
  • CVE ID
  • CVE-2023-24070
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-01-23T05:15:18
  • Last Modified Date
  • 2023-01-30T15:18:10
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:misp-project:malware_information_sharing_platform:*:*:*:*:*:*:*:* 1 OR 2.4.167
History
Created Old Value New Value Data Type Notes
2023-01-23 06:12:34 Added to TrackCVE
2023-01-23 15:14:33 2023-01-23T15:08:08 CVE Modified Date updated
2023-01-23 15:14:33 Received Awaiting Analysis Vulnerability Status updated
2023-01-30 15:14:16 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-01-30 17:14:48 2023-01-30T15:18:10 CVE Modified Date updated
2023-01-30 17:14:48 Undergoing Analysis Analyzed Vulnerability Status updated
2023-01-30 17:14:49 Weakness Enumeration new
2023-01-30 17:14:51 CPE Information updated