Closed schimpy closed 3 days ago
Hello @remg427,
Any updates on this issue? Were you able to replicate it at your env.?
Thank you in advance.
Br, schimpy
Hello team, any updates on this?
Hello @remg427, any updates on this issue?
Hello, I finally had a look at this. sorry for too long time. on "all occurrences of domain.net are updated": this is expected when doing sighting by value.
"all attributes with zero ("0") value in it got updated ": I excluded 0 / "0" from list of values
Hello @remg427, in which version is the bug fixed? Thanks
Hello, this is fixed in the latest version 4.2.2
Hello team,
I managed to sent sightings from Splunk to MISP (both by attribute uuid and by value).
But when updating sighting by value, also all attributes with zero ("0") value in it got updated (plus all occurences "domain.net"). I am using following SPL:
Could you see a possible issue here?