21Mar
CVE-2024-29858 | MISP up to 2.4.186 OrganisationsController.php __uploadLogo unrestricted upload
A vulnerability has been found in MISP up to 2.4.186 and classified as problematic. This vulnerability affects the function__uploadLogo
of the file app/Controller/OrganisationsController.php. The manipulation leads to unrestricted upload.
This vulnerability was named CVE-2024-29858. The attack needs to be initiated within the local network. There is no exploit available.
It is recommended to upgrade the affected component.