CVE-2021-36212: XSS
First published: Wed Jul 07 2021(Updated: )
app/View/SharingGroups/view.ctp in MISP before 2.4.146 allows stored XSS in the sharing groups view.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Misp Misp | <2.4.146 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2021-36212?
The severity of CVE-2021-36212 is medium, with a severity value of 6.1.
What is the impact of CVE-2021-36212?
CVE-2021-36212 allows stored XSS (Cross-Site Scripting) in the sharing groups view, potentially leading to unauthorized access to sensitive information or malicious actions.
How can I fix CVE-2021-36212?
To fix CVE-2021-36212, update to MISP version 2.4.146 or later.
Where can I find more information about CVE-2021-36212?
You can find more information about CVE-2021-36212 in the following references: [https://github.com/MISP/MISP/commit/01521d614cb578de75a406394b4f0426f6036ba7](https://github.com/MISP/MISP/commit/01521d614cb578de75a406394b4f0426f6036ba7) and [https://github.com/MISP/MISP/compare/v2.4.145...v2.4.146](https://github.com/MISP/MISP/compare/v2.4.145...v2.4.146).
What is the CVE ID of this vulnerability?
The CVE ID of this vulnerability is CVE-2021-36212.
- collector/nvd-index
- vendor/misp
- canonical/misp misp