MISP
/
misp-website
mirror of https://github.com/MISP/misp-website
2
0
Fork 0
Code Issues Releases Wiki Activity

chg: [blog] add newly assigned CVEs

pull/76/head
Alexandre Dulaunoy 2023-03-19 11:11:24 +01:00
parent 049c1a9997
commit 530a61601a
No known key found for this signature in database
GPG Key ID: 09E2CD4944E6CBCD
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
content/blog/MISP.2.4.169.released.md
View File

@ -20,6 +20,9 @@ It includes many improvement [release](https://github.com/MISP/misp-stix/release
- TAXII servers invalid baseurl field type fixed. - TAXII servers invalid baseurl field type fixed.
- Restore bro export (temporary fix until a complete rework of the bro export in ReSTsearch). - Restore bro export (temporary fix until a complete rework of the bro export in ReSTsearch).
- [CVE-2023-28606](https://cvepremium.circl.lu/cve/CVE-2023-28606) < MISP 2.4.169 - js/event-graph.js in MISP before 2.4.169 allows XSS via event-graph node tooltips.
- [CVE-2023-28607](https://cvepremium.circl.lu/cve/CVE-2023-28607) < MISP 2.4.169 - js/event-graph.js in MISP before 2.4.169 allows XSS via the event-graph relationship tooltip.
A huge thanks to all the contributors and supporters of the MISP project. This release wouldn't be possible without the help of all the organisations and people supporting us to make MISP a reality. A huge thanks to all the contributors and supporters of the MISP project. This release wouldn't be possible without the help of all the organisations and people supporting us to make MISP a reality.