CNNVD-202511-3024 Information
CNNVD ID
CNNVD-202511-3024
Related CVE
- CNNVD Published: 2025-11-28
Description (Chinese)
MISP是MISP开源的一套开源的软件解决方案。该产品用于收集、存储、分发、共享网络安全指标,并具有威胁网络安全事件分析和恶意软件分析等功能。 MISP 2.5.24之前版本存在安全漏洞,该漏洞源于检查上传文件有效性时逻辑错误。
Description (English)
MISP is an open source software solution for the MISP open source. The product is used for the collection, storage, distribution, sharing of cybersecurity indicators and has functions such as threat security incident analysis and malicious software analysis. There was a security loophole in the previous version of MISP 2.5.24, which stemmed from a logical error in checking the validity of uploading documents.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
MISP
Published
2025-11-28
Last Modified
2026-02-24
References
https://github.com/MISP/MISP/compare/v2.5.23…v2.5.24 https://github.com/misp/misp/commit/6867f0d3157a1959154bdad9ddac009dec6a19f5 https://access.redhat.com/security/cve/cve-2025-66384
Patch
https://github.com/MISP/MISP/releases
Share on: