Path Traversal Vulnerability in MISP Affects Organisation Logo Retrieval
CVE-2026-54394
5.3MEDIUM
What is CVE-2026-54394?
MISP has a path traversal vulnerability in the OrganisationsController::getOrgLogo function, which allows an attacker to manipulate organisation-controlled fields such as id, name, and uuid to access arbitrary files. This oversight occurs because the system does not properly validate that the resolved file paths remain within the designated APP/files/img/orgs/ directory. By exploiting this flaw, an attacker could retrieve unauthorized .png or .svg files from outside this directory, resulting in unapproved data exposure. The vulnerability has been addressed by implementing realpath() to ensure that all candidate paths verify correctly against the intended directory before serving any file.
Affected Version(s)
misp 0 < 2.5.40
