CVE-2024-25674 Information

Description

An issue was discovered in MISP before 2.4.184. Organisation logo upload is insecure because of a lack of checks for the file extension and MIME type.

Reference

https://github.com/MISP/MISP/commit/312d2d5422235235ddd211dcb6bb5bb09c07791f https://github.com/MISP/MISP/compare/v2.4.183…v2.4.184