CVE-2019-9482
CVE-2019-9482
In MISP 2.4.102, an authenticated user can view sightings that they should not be eligible for. Exploiting this requires access to the event that has received the sighting. The issue affects instances with restrictive sighting settings (event only / sighting reported only).
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →