CVSS 3.1 Score 9.8 of 10 (high)


Published Nov 17, 2023
Updated: Jan 10, 2024


CVE-2023-48659 is a critical vulnerability that affects MISP versions prior to 2.4.176. The issue is related to mishandling of parameter parsing in the AppController.php file. This vulnerability has a base severity score of 9.8 and an impact score of 5.9, indicating its high potential danger to organizations. It can be exploited remotely, does not require any privileges, and does not involve user interaction. The attack vector is through the network, and it can result in high impacts on integrity and confidentiality. To remediate this vulnerability, organizations should update their MISP installations to version 2.4.176 or newer as soon as possible to mitigate the risk of exploitation.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-48659 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options