CVE-2024-46918 | MISP up to 2.4.197 UserLoginProfilesController.php information disclosure

Inserito da Angelo Barbosa | Set 15, 2024 | CVE

A vulnerability classified as problematic was found in MISP up to 2.4.197. Affected by this vulnerability is an unknown functionality of the file app/Controller/UserLoginProfilesController.php. The manipulation leads to information disclosure.

This vulnerability is known as CVE-2024-46918. The attack needs to be done within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-46918 | MISP up to 2.4.197 UserLoginProfilesController.php information disclosure

Post correlati

CVE-2024-28595 | Employee Management System 1.0 update-admin.php admin_id sql injection

CVE-2024-5507 | Luxion KeyShot Viewer KSP File Parser stack-based overflow

CVE-2024-7183 | TOTOLINK A3600R 4.1.2cu.5182_B20201102 /cgi-bin/cstecgi.cgi setUploadSetting FileName buffer overflow

CVE-2024-40929 | Linux Kernel up to 5.10.220/5.15.161/6.1.94/6.6.34/6.9.5 iwlwifi n_ssids out-of-bounds