Known Vulnerabilities for products from Thehive-project
Listed below are 3 of the newest known vulnerabilities associated with the vendor "Thehive-project".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2019-7652 json | TheHive Project UnshortenLink analyzer before 1.1, included in Cortex-Analyzers before 1.15.2, has SSRF. To exploit the vulne... | 7.7 - HIGH | 2019-05-09 | 2019-05-13 |
| CVE-2018-20226 json | An organization administrator can add a super administrator in THEHIVE PROJECT Cortex before 2.1.3 due to the lack of overrid... | 7.2 - HIGH | 2018-12-21 | 2019-10-03 |
| CVE-2017-18376 json | An improper authorization check in the User API in TheHive before 2.13.4 and 3.x before 3.3.1 allows users with read-only or ... | 8.8 - HIGH | 2019-06-02 | 2023-09-15 |
Known software with vulnerabilities from Thehive-project
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Thehive-project | Cortex | 1.0.0 |
| Application | Thehive-project | Cortex-analyzers | 1.0.0 |
| Application | Thehive-project | Thehive | 2.10.0 |