Security Advisory

CVE-2024-46918

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-09-15 00:00:00

Last updated 2025-03-13 14:35:06

Assigner mitre

State PUBLISHED

Description

app/Controller/UserLoginProfilesController.php in MISP before 2.4.198 does not prevent an org admin from viewing sensitive login fields of another org admin in the same org.

← Browse all CVEs View on cve.org ↗