Vulnerabilities > Misp Project > Malware Information Sharing Platform > High

DATE CVE VULNERABILITY TITLE RISK
2023-06-30 CVE-2023-37306 Information Exposure Through an Error Message vulnerability in Misp-Project Malware Information Sharing Platform 2.4.172
MISP 2.4.172 mishandles different certificate file extensions in server sync.
network
low complexity
misp-project CWE-209
7.5
2016-09-03 CVE-2015-5721 Code Injection vulnerability in Misp-Project Malware Information Sharing Platform
Malware Information Sharing Platform (MISP) before 2.3.90 allows remote attackers to conduct PHP object injection attacks via crafted serialized data, related to TemplatesController.php and populate_event_from_template_attributes.ctp.
network
low complexity
misp-project CWE-94
7.5