CVE-2015-5719

NONE EPSS 80.9%
Published Sep 3, 20169y ago · Modified Jun 23, 20261w ago
Find Similar
Published Sep 3, 2016 9y ago
Last Modified Jun 23, 2026 1w ago

Description

app/Controller/TemplatesController.php in Malware Information Sharing Platform (MISP) before 2.3.92 does not properly restrict filenames under the tmp/files/ directory, which has unspecified impact and attack vectors.

Threat Intelligence

EPSS Exploit Probability
80.9% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 1

VendorProductVersionRange
misp-projectmisp* ≤2.3.91

References 3

  • securityfocus.com http://www.securityfocus.com/bid/92740
  • github.com https://github.com/MISP/MISP/commit/27cc167c3355ec76292235d7f5f4e0016bfd7699
    Issue TrackingPatch
  • circl.lu https://www.circl.lu/advisory/CVE-2015-5719/
    Third Party Advisory

Remediation

  • github.com https://github.com/MISP/MISP/commit/27cc167c3355ec76292235d7f5f4e0016bfd7699
    Issue TrackingPatch