First published: Fri Nov 17 2023(Updated: )
An issue was discovered in MISP before 2.4.176. app/Controller/AppController.php mishandles parameter parsing.
|Affected Software||Affected Version||How to fix|
|Misp-project Malware Information Sharing Platform||<2.4.176|
The severity of CVE-2023-48659 is critical (9.8).
CVE-2023-48659 is an issue discovered in MISP before version 2.4.176 that mishandles parameter parsing in the app/Controller/AppController.php file.
CVE-2023-48659 affects MISP versions up to and including 2.4.176, specifically the app/Controller/AppController.php file.
To fix CVE-2023-48659, update MISP to version 2.4.176 or later.
More information about CVE-2023-48659 can be found at the following references: [link1](https://github.com/MISP/MISP/compare/v2.4.175...v2.4.176) and [link2](https://github.com/MISP/MISP/commit/37ecf81b84a01baa4d4b1fade4de94a9018c32ed).