Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

misp — Vulnerabilities & Security Advisories 50

Browse all 50 CVE security advisories affecting misp. AI-powered Chinese analysis, POCs, and references for each vulnerability.

MISP is an open-source threat intelligence platform designed for sharing cyber threat information between organizations. Historically, vulnerabilities in MISP have included remote code execution, cross-site scripting, and privilege escalation flaws, often stemming from improper input validation or access control issues. The platform's security characteristics emphasize collaborative information sharing, though past incidents have highlighted risks in default configurations and plugin vulnerabilities. With 9 CVEs on record, MISP remains widely adopted for threat intelligence sharing, requiring proper hardening and regular updates to mitigate potential exploitation risks. Organizations should implement strict access controls and validate all shared data to prevent misuse.

CVE IDTitleCVSSSeverityPublished
CVE-2026-62143 Server-Side Request Forgery protection bypass in misp-modules html_to_markdown via IPv4-mapped IPv6 addresses — misp-modulesCWE-918--2026-07-13
CVE-2026-61474 MISP: Improper sharing group authorization check when adding attributes — mispCWE-863--2026-07-09
CVE-2026-60125 importModule function in MISP ignores per-organisation import module restrictions — mispCWE-863--2026-07-08
CVE-2026-60124 MISP importModule missing authorization allows read-only users to modify events via misp_standard imports — mispCWE-862--2026-07-08
CVE-2026-56447 MISP remote code execution via arbitrary rdkafka configuration path — mispCWE-829--2026-06-22
CVE-2026-56446 Authenticated Remote Code Execution via Arbitrary NDJSON Error Log Path in MISP — mispCWE-94--2026-06-22
CVE-2026-56425 MISP AAD authentication plugin - Improper OAuth State Handling, Missing Session Rotation, Insecure Redirect URI Validation, and Log Injection — mispCWE-384--2026-06-22
CVE-2026-56424 Broken access control in MISP core allows cross-organization unauthorized modification or deletion of analyst data, event reports, collections, templates, and decaying models — mispCWE-639--2026-06-22
CVE-2026-56423 MISP Core: Broken access control allows instance-wide unauthorized deletion of event reports and sharing groups via bulk deletion endpoints — mispCWE-862--2026-06-22
CVE-2026-56422 MISP Core: Mass Assignment and Object Re-ownership via Unvalidated Request Fields — mispCWE-639--2026-06-22
CVE-2026-54398 MISP object edit authorization bypass allows unauthorized sharing group assignment — mispCWE-863--2026-06-12
CVE-2026-54397 MISP event editing allows unauthorized assignment to undisclosed sharing groups — mispCWE-863--2026-06-12
CVE-2026-54396 MISP AuthKey edit endpoint allows authenticated user email enumeration — mispCWE-200--2026-06-12
CVE-2026-54395 MISP UiBeta event index reflected XSS in advanced filter popup — mispCWE-79--2026-06-12
CVE-2026-54394 MISP organisation logo path traversal allows retrieval of arbitrary PNG/SVG files — mispCWE-22--2026-06-12
CVE-2026-54393 MISP Overmind theme stored XSS via unvalidated homepage setting — mispCWE-79--2026-06-12
CVE-2026-54362 MISP template builder exposes non-visible custom galaxies across organisations — mispCWE-863--2026-06-12
CVE-2026-54361 MISP mass assignment vulnerabilities allow unauthorized modification of ownership and delegation records — mispCWE-639--2026-06-12
CVE-2026-54360 MISP sharing group creation mass assignment allows unauthorized takeover of existing sharing groups — mispCWE-639--2026-06-12
CVE-2026-54359 MISP automation endpoints may be exposed to CSRF when Sec-Fetch-Site protection is disabled by default — mispCWE-352--2026-06-12
CVE-2026-54358 MISP organization administrators can target site administrator accounts for password reset — mispCWE-863--2026-06-12
CVE-2026-54357 MISP improper authorization allows organization administrators to modify site administrator user settings — mispCWE-863--2026-06-12
CVE-2026-53693 MISP BSimVis stored cross-site scripting in tag and cluster rendering paths via unescaped tag metadata and UI labels — bsimvisCWE-79--2026-06-10
CVE-2026-10868 MISP user edit endpoint mass assignment vulnerability allows unauthorized user account modification — mispCWE-269--2026-06-04
CVE-2026-10864 MISP Dashboard widget field selection may expose restricted user and organisation data — mispCWE-200--2026-06-04
CVE-2026-10863 MISP User-controlled order parameter in correlations over-correlation endpoint — mispCWE-20--2026-06-04
CVE-2026-10860 MISP CRUDComponent delete validation bypass via operator precedence error — mispCWE-863--2026-06-04
CVE-2026-10861 MISP post-login open redirect via pre_login_requested_url — mispCWE-601--2026-06-04
CVE-2026-10856 Open redirect in MISP dashboard button widget URL handling — mispCWE-601--2026-06-04
CVE-2026-10855 MISP Event template importer authorization bypass — mispCWE-862--2026-06-04

This page lists every published CVE security advisory associated with misp. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.