Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

CVE-2026-10854— Unauthorized exposure of private galaxies in MISP event template creation

AI Predicted 5.3 Difficulty: Easy EPSS 0.18% · P7

Possible ATT&CK Techniques 1AI

T1530 · Data from Cloud Storage

Affected Version Matrix 1

VendorProductVersion RangeStatus
mispmisp≤ 2.5.38affected
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-10854

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Unauthorized exposure of private galaxies in MISP event template creation
Source: NVD (National Vulnerability Database)
Vulnerability Description
A visibility control issue in the event template creation workflow allowed non-site-admin users to access private galaxies belonging to other organisations. The event template builder loaded all enabled galaxies without applying organisation or distribution-based access restrictions, potentially exposing private galaxy metadata such as galaxy type and description to users who should not have visibility. The issue has been fixed by restricting galaxy queries for non-site-admin users to galaxies owned by the user’s organisation or galaxies with a non-private distribution setting. Site administrators retain visibility of all enabled galaxies.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
信息暴露
Source: NVD (National Vulnerability Database)
Vulnerability Title
MISP 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
MISP是MISP开源的一套开源的软件解决方案。该产品用于收集、存储、分发、共享网络安全指标,并具有威胁网络安全事件分析和恶意软件分析等功能。 MISP存在安全漏洞,该漏洞源于事件模板创建工作流中的可见性控制问题,可能导致非站点管理员用户访问其他组织的私有星系。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
mispmisp 0 ~ 2.5.38 -

II. Public POCs for CVE-2026-10854

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-10854

登录查看更多情报信息。

Patches & Fixes for CVE-2026-10854 (1)

Same Patch Batch · misp · 2026-06-04 · 8 CVEs total

CVE-2026-10860MISP CRUDComponent delete validation bypass via operator precedence error
CVE-2026-10856Open redirect in MISP dashboard button widget URL handling
CVE-2026-10863MISP User-controlled order parameter in correlations over-correlation endpoint
CVE-2026-10864MISP Dashboard widget field selection may expose restricted user and organisation data
CVE-2026-10868MISP user edit endpoint mass assignment vulnerability allows unauthorized user account mod
CVE-2026-10861MISP post-login open redirect via pre_login_requested_url
CVE-2026-10855MISP Event template importer authorization bypass

IV. Related Vulnerabilities

V. Comments for CVE-2026-10854

No comments yet


Leave a comment