MISP 2.4.176 released with various improvements and bugs fixed.

MISP 2.4.176 released with various improvements and bugs fixed. This version also includes major improvements in the misp-stix library especially on the storing relationships and the description of relationships in the MISP standard format.

Continue reading

MISP 2.4.175 released with various bugs fixed, improvements and security fixes.

MISP 2.4.175 released with various bugs fixed, improvements and security fixes.

Improvements

• Added support of start_date and end_date options in the MISP dashboard widgets.
• In the user periodic reporting, allow users to set the number of days to include in the reporting (UI).
• In the MISP dashboard org Widget, added support for first_half_year and second_half_year timeframe.
• New enrich object functionality added, in order to allow for the enrichment of a complete MISP object. Used by the SigMF module but this can be used with any expansion modules supporting objects.
• New feeds added.
• Improve the diagnostics when an instance does not have internet access or does not use the self-update feature

Bugs fixed

• Update the CA bundle of the CakePHP submodule maintained by the MISP project.
• IndexFilter: correct index page filtering is now fixed for ReST requets.
• Prevent push_rules from being required in API requests to the /server/edit endpoint.
• The annoying MISP event import bug from JSON has been fixed, you can now import MISP JSON events without the Event key.
• Various fixes in the MISP dashboard interface.
• Fix

Security fixes

• CVE-2023-40224 <= MISP 2.4.174 - allows XSS in app/View/Events/index.ctp. (reported by BeDisruptive OSS Team)
• CVE-2023-41098 <= MISP 2.4.174 - In app/Controller/DashboardsController.php, a reflected XSS issue exists via the id parameter upon a dashboard edit.

Thanks to BeDisruptive OSS Team and Centre for Cyber Security Belgium (CCB) for the reporting.

Continue reading