CVE advisoryCRITICAL
CVE-2021-39302
MISP SQL Injection Vulnerability
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A critical SQL injection vulnerability exists in MISP, a threat intelligence sharing platform. If MISP is configured to be reachable over a network, an attacker could inject malicious SQL code, potentially leading to unauthorized access, modification, or deletion of sensitive data. This impacts the integrity and confid