MISP 2.4.175 released with various bugs fixed, improvements and security fixes.
Improvements
- Added support of
start_date
and end_date
options in the MISP dashboard widgets.
- In the user periodic reporting, allow users to set the number of days to include in the reporting (UI).
- In the MISP dashboard org Widget, added support for
first_half_year
and second_half_year
timeframe.
- New enrich object functionality added, in order to allow for the enrichment of a complete MISP object. Used by the SigMF module but this can be used with any expansion modules supporting objects.
- New feeds added.
- Improve the diagnostics when an instance does not have internet access or does not use the self-update feature
Bugs fixed
- Update the CA bundle of the CakePHP submodule maintained by the MISP project.
- IndexFilter: correct index page filtering is now fixed for ReST requets.
- Prevent
push_rules
from being required in API requests to the /server/edit
endpoint.
- The annoying MISP event import bug from JSON has been fixed, you can now import MISP JSON events without the
Event
key.
- Various fixes in the MISP dashboard interface.
- Fix
Security fixes
- CVE-2023-40224 <= MISP 2.4.174 - allows XSS in app/View/Events/index.ctp. (reported by BeDisruptive OSS Team)
- CVE-2023-41098 <= MISP 2.4.174 - In app/Controller/DashboardsController.php, a reflected XSS issue exists via the id parameter upon a dashboard edit.
Thanks to BeDisruptive OSS Team and Centre for Cyber Security Belgium (CCB) for the reporting.
Continue reading