ByteOS Network

CVE Vulnerability Details :

CVE-2022-48329

PUBLISHED

More Info Official Page

Assigner-mitre

Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At-20 Feb, 2023 | 00:00

Updated At-18 Mar, 2025 | 15:32

▼CVE Numbering Authority (CNA)

MISP before 2.4.166 unsafely allows users to use the order parameter, related to app/Model/Attribute.php, app/Model/GalaxyCluster.php, app/Model/Workflow.php, and app/Plugin/Assets/models/behaviors/LogableBehavior.php.

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
https://github.com/MISP/MISP/commit/afbe08d256d609eee5195c5b0003cfb723ae7af1	N/A
https://github.com/MISP/MISP/commit/a73c1c461bc6f8a048eae92b5e99823afd892d1e	N/A
https://github.com/MISP/MISP/compare/v2.4.165...v2.4.166	N/A

Hyperlink: https://github.com/MISP/MISP/commit/afbe08d256d609eee5195c5b0003cfb723ae7af1

Resource: N/A

Hyperlink: https://github.com/MISP/MISP/commit/a73c1c461bc6f8a048eae92b5e99823afd892d1e

Resource: N/A

Hyperlink: https://github.com/MISP/MISP/compare/v2.4.165...v2.4.166

Resource: N/A

▼Authorized Data Publishers (ADP)

1. CVE Program Container

References

Hyperlink	Resource
https://github.com/MISP/MISP/commit/afbe08d256d609eee5195c5b0003cfb723ae7af1	x_transferred
https://github.com/MISP/MISP/commit/a73c1c461bc6f8a048eae92b5e99823afd892d1e	x_transferred
https://github.com/MISP/MISP/compare/v2.4.165...v2.4.166	x_transferred

Hyperlink: https://github.com/MISP/MISP/commit/afbe08d256d609eee5195c5b0003cfb723ae7af1

Resource:

x_transferred

Hyperlink: https://github.com/MISP/MISP/commit/a73c1c461bc6f8a048eae92b5e99823afd892d1e

Resource:

x_transferred

Hyperlink: https://github.com/MISP/MISP/compare/v2.4.165...v2.4.166

Resource:

x_transferred

2. CISA ADP Vulnrichment

Problem Types

Type	CWE ID	Description
CWE	CWE-755	CWE-755 Improper Handling of Exceptional Conditions

Type: CWE

CWE ID: CWE-755

Description: CWE-755 Improper Handling of Exceptional Conditions

Metrics

Version	Base score	Base severity	Vector
3.1	9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Version: 3.1

Base score: 9.8

Base severity: CRITICAL

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References