CVE-2024-54675 | MISP up to 2.5.2 Editor Interface workflows-editor.js cross site scripting

Inserito da Angelo Barbosa | Dic 4, 2024 | CVE

A vulnerability has been found in MISP up to 2.5.2 and classified as problematic. This vulnerability affects unknown code of the file app/webroot/js/workflows-editor/workflows-editor.js of the component Editor Interface. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-54675. The attack can be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-54675 | MISP up to 2.5.2 Editor Interface workflows-editor.js cross site scripting

Post correlati

CVE-2024-24857 | Linux Kernel up to 6.8-rc1 Bluetooth conn_info_min_age_set/conn_info_max_age_set race condition

CVE-2024-42243 | Linux Kernel up to 6.6.40/6.9.9 lib/xarray.c allocation of resources (a0c42ddd0969/333c5539a31f/099d90642a71)

CVE-2024-36948 | Linux Kernel up to 6.8.9 xe_migrate buffer overflow (e23a904dfeb5/9cb46b31f3d0)

CVE-2024-3302 | Mozilla Firefox up to 124 HTTP/2 CONTINUATION Frame resource consumption