CVE advisoryCRITICAL
CVE-2022-29528
MISP PHAR Deserialization Vulnerability.
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A PHAR deserialization vulnerability exists in MISP, potentially allowing unauthenticated attackers to execute arbitrary code on affected systems. This could compromise the integrity and availability of the platform. Please confirm if your organization uses MISP and if it is accessible externally.