MISP
/
misp-website
mirror of https://github.com/MISP/misp-website
2
0
Fork 0
Code Issues Releases Wiki Activity
misp-website/content/blog/MISP.2.4.168.released.md

3.0 KiB
Raw Blame History

title date layout banner
MISP 2.4.168 released with bugs fixed, security fixes and major improvements in STIX support. 2023-02-16 post /img/blog/graph-syria.png

We are pleased to announce the immediate availability of MISP v2.4.168 with bugs fixed and various security fixes.

The release include a significant release of misp-stix which is the core Python library for STIX (1, 2.0 and 2.1) import and export.

Fixes

  • Improvements to the indexTable
  • allow site admins ability to view event_creator_email for all events in export
  • [shadowAttribute:accept] Restored accepting functionality for the proposals
  • [feed:edit] Make sure to keep orgc_id to its saved value
  • [tags:relationship] Fixed synchronisation of relationship_type

Security fixes

  • CVE-2023-24070 < MISP 2.4.168 - app/View/AuthKeys/authkey_display.ctp in MISP through 2.4.167 has an XSS in authkey add via a Referer field.
  • CVE-2023-24026 < MISP 2.4.168 - In app/webroot/js/event-graph.js has an XSS vulnerability via an event-graph preview payload.
  • CVE-2023-24027 < MISP 2.4.168 - In app/webroot/js/action_table.js allows XSS via a network history name.
  • CVE-2023-24028 < MISP 2.4.168 - In app/Controller/Component/ACLComponent.php has incorrect access control for the decaying import function.

Thanks to the reporter Cyber Controls from SIX Group and Dawid Czarnecki from Zigrin Security.

A huge thanks to all the contributors and supporters of the MISP project. This release won't be possible by all the organisations and people supporting us to make MISP a reality.

For more details about changes in the MISP core software.

Other updates and changes in MISP project

MISP Objects

MISP Galaxy

  • New Sigma Galaxy including all Sigma rule and their ATT&CK relationships - import script added
  • Many updates to the threat-actor and ransomware MISP galaxy
  • Improvements to the country galaxy

MISP taxonomies

  • Improvements to the aviation taxonomy

MISP warning-lists

  • New generator added for the Cached Chrome Top Million Websites
  • Improved generator for gzip files source
  • VPN list generator fixed

Don't forget to follow us on Mastodon

MISP projet has its own Mastodon server misp-community.org and don't forget to follow @misp@misp-community.org on the fediverse. Core contributors of MISP can sign-up if you want an account.