misp Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by misp
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Arbitrary Code Execution Vulnerability in MISP by Threat Actors
CVE-2026-56447MispMisp9.3CRITICALRemote Code Execution Vulnerability in MISP Logging Configuration
CVE-2026-56446MispMisp8.7HIGHOAuth 2.0 Authorization Weaknesses in Azure Active Directory Authentication Plugin
CVE-2026-56425MispMisp9.3CRITICALAuthorization Flaws in MISP Core Affecting Multiple User Permissions
CVE-2026-56424MispMisp7.1HIGHAccess Control Vulnerability in MISP Core Affecting Event Reports and Sharing Groups
CVE-2026-56423MispMisp9.4CRITICALPrivilege Escalation in MISP Core Controllers by Multiple Request Fields
CVE-2026-56422MispMisp9.4CRITICALMass Assignment Vulnerabilities in MISP Affecting Data Control and Integrity
CVE-2026-54361MispMisp8.8HIGHMass Assignment Vulnerability in MISP's Sharing Group Creation
CVE-2026-54360MispMisp8.4HIGHInsecure configuration in MISP by Risk Based Security, allowing unauthorized cross-site request forgery
CVE-2026-54359MispMisp7.1HIGHAuthorization Flaw in MISP by GitHub
CVE-2026-54358MispMisp7.5HIGHMass Assignment Vulnerability in MISP User Functionality
CVE-2026-10868MispMisp9CRITICALLogic Error in MISP CRUD Component Allows Unauthorized Record Deletion
CVE-2026-10860MispMisp7.9HIGHAuthentication Bypass in MISP with LDAP Mixed Authentication and OTP Enforcement
CVE-2026-10611MispMisp8.2HIGHVulnerability in ShadowAttribute Proposal Workflow Affects MISP Product by MISP
CVE-2026-9136MispMisp8.3HIGHImproper Access Control in MISP Threat Intelligence Platform
CVE-2026-44380MispMisp8.6HIGHSQL Injection Vulnerability in MISP Threat Intelligence Platform
CVE-2026-44381MispMisp9.3CRITICALCross-Site Request Forgery Vulnerability in MISP Modules by MISP
CVE-2026-44364MispMisp-modules9.3CRITICALLDAP Injection in MISP Threat Intelligence Platform by Risky Server Configurations
CVE-2026-39962MispMisp8.8HIGHInvalid File Upload Logic in MISP Platform Affecting Security
CVE-2025-66384MispMisp8.2HIGHLogo Upload Vulnerability in MISP Before 2.4.187
CVE-2024-29858MISPMisp9.8CRITICALFile Upload Vulnerability in MISP Before 2.4.187
CVE-2024-29859MISPMisp9.8CRITICALInsecure Organisation Logo Upload Due to Lack of File Extension and MIME Type Checks
CVE-2024-25674MISPMisp9.8CRITICALClient-side vulnerability in MISP before 2.4.184 allows unauthorized export generation
CVE-2024-25675MISPMisp9.8CRITICALAccess Control Misconfiguration in MISP by MISP Project
CVE-2023-50918MispMisp9.8CRITICALBlind SQL Injection Vulnerability in MISP Software by MISP Project
CVE-2023-48655Misp-projectMalware Information Sh...9.8CRITICAL