Closed
Description
Threat level/severity code inverted between The Hive and MISP
Request Type
Bug
Work Environment
| Question | Answer |
|---|---|
| OS version (server) | Debian Strech |
| TheHive version / git hash | 2.12.1 / commit 8300fcc |
| Package Type | Docker, Build from source |
Problem Description
An event with a high threat level in MISP is imported into The Hive Project as alert with low severity
Steps to Reproduce
Import Event From MISP and compare fields.
Possible Solutions
Maybe change values in Constants.js file but I don't know the impact
Complementary information
When I compare these two codes, we see that the classification is reversed :
[TheHive] https://github.com/CERT-BDF/TheHive/blob/9c5c12b2f0dd17a6f47ecb5e8004b21a964726ba/ui/app/scripts/services/Constants.js
[MISP] https://github.com/MISP/MISP/blob/90c28602c31d88f576f3d676c31d439ad3e58e68/app/Test/Fixture/ThreatLevelFixture.php