MISP 2.4.172 mishandles different certificate file extensions in server sync. An attacker can obtain sensitive information because of the nature of the error messages.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 35.5%