Symlink Attack Affecting misp-modules package, versions [,2.4.196)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk IDSNYK-PYTHON-MISPMODULES-7856159
- published2 Sept 2024
- disclosed1 Sept 2024
- creditUnknown
Introduced: 1 Sep 2024
CVE NOT AVAILABLE CWE-59 (opens in a new tab)Common Weakness Enumeration (CWE) is a category system for software weaknesses
How to fix?
Upgrade misp-modules to version 2.4.196 or higher.
Overview
misp-modules is a MISP modules are autonomous modules that can be used for expansion and other services in MISP
Affected versions of this package are vulnerable to Symlink Attack due to improper checks.