Zurück zur CVE-Übersicht
CVE-2020-8890
MEDIUM(5.9)CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Risk Signal Score15/100 — NIEDRIG
- CVSS 5.9 — Mittel
EPSS-Score
1%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
5.9
Technische Schwere
Beschreibung
An issue was discovered in MISP before 2.4.121. It mishandled time skew (between the machine hosting the web server and the machine hosting the database) when trying to block a brute-force series of invalid requests.
Referenzen
- https://github.com/MISP/MISP/commit/934c82819237b4edf1da64587b72a87bec5dd520
- https://github.com/MISP/MISP/commit/c1a0b3b2809b21b4df8c1efbc803aff700e262c3
- https://github.com/MISP/MISP/compare/v2.4.120...v2.4.121
- https://github.com/MISP/MISP/commit/934c82819237b4edf1da64587b72a87bec5dd520
- https://github.com/MISP/MISP/commit/c1a0b3b2809b21b4df8c1efbc803aff700e262c3
- https://github.com/MISP/MISP/compare/v2.4.120...v2.4.121