Dfir-iris

Iris

5 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.1

CVE-2026-22783

  • EPSS 0.08%
  • Veröffentlicht 12.01.2026 18:27:38
  • Zuletzt bearbeitet 16.01.2026 18:42:18

Iris is a web collaborative platform that helps incident responders share technical details during investigations. Prior to 2.4.24, the DFIR-IRIS datastore file management system has a vulnerability where mass assignment of the file_local_name field ...

6.8

CVE-2024-25624

  • EPSS 0.93%
  • Veröffentlicht 25.04.2024 17:15:48
  • Zuletzt bearbeitet 10.12.2024 15:06:18

Iris is a web collaborative platform aiming to help incident responders sharing technical details during investigations. Due to an improper setup of Jinja2 environment, reports generation in `iris-web` is prone to a Server Side Template Injection (SS...

5.4

CVE-2024-25640

  • EPSS 0.52%
  • Veröffentlicht 19.02.2024 20:15:46
  • Zuletzt bearbeitet 10.12.2024 15:02:48

Iris is a web collaborative platform that helps incident responders share technical details during investigations. A stored Cross-Site Scripting (XSS) vulnerability has been identified in iris-web, affecting multiple locations in versions prior to v2...

5.4

CVE-2023-50712

  • EPSS 0.43%
  • Veröffentlicht 22.12.2023 20:15:07
  • Zuletzt bearbeitet 21.11.2024 08:37:11

Iris is a web collaborative platform aiming to help incident responders sharing technical details during investigations. A stored Cross-Site Scripting (XSS) vulnerability has been identified in iris-web, affecting multiple locations in versions prior...

5.4

CVE-2023-30615

  • EPSS 0.68%
  • Veröffentlicht 25.05.2023 18:15:10
  • Zuletzt bearbeitet 21.11.2024 08:00:30

Iris is a web collaborative platform aiming to help incident responders sharing technical details during investigations. A stored Cross-Site Scripting (XSS) vulnerability has been identified in iris-web, affecting multiple locations . The vulnerabili...