Security Advisory

CVE-2021-31780

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-04-23 19:41:55

Last updated 2024-08-03 23:10:29

Assigner mitre

State PUBLISHED

Description

In app/Model/MispObject.php in MISP 2.4.141, an incorrect sharing group association could lead to information disclosure on an event edit. When an object has a sharing group associated with an event edit, the sharing group object is ignored and instead the passed local ID is reused.

← Browse all CVEs View on cve.org ↗