Vulnerabilities > Misp > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-11-24 | CVE-2020-29006 | Missing Authorization vulnerability in Misp MISP before 2.4.135 lacks an ACL check, related to app/Controller/GalaxyElementsController.php and app/Model/GalaxyElement.php. | 9.8 |
| 2020-06-30 | CVE-2020-15411 | Unspecified vulnerability in Misp 2.4.128 An issue was discovered in MISP 2.4.128. | 9.8 |
| 2020-05-15 | CVE-2020-12889 | Unspecified vulnerability in Misp Misp-Maltego 1.4.4 MISP MISP-maltego 1.4.4 incorrectly shares a MISP connection across users in a remote-transform use case. | 9.8 |
| 2018-06-22 | CVE-2018-12649 | Improper Restriction of Excessive Authentication Attempts vulnerability in Misp 2.4.92 An issue was discovered in app/Controller/UsersController.php in MISP 2.4.92. | 9.8 |