CVE-2026-39962

Name of the Vulnerable Software and Affected Versions MISP versions prior to 2.5.36

Description MISP is a threat intelligence and sharing platform. A flaw exists in the LDAP query handling within ApacheAuthenticate.php, specifically due to improper neutralization of special elements. This allows for LDAP injection via manipulation of the username value when ApacheAuthenticate.apacheEnv is configured to utilize a user-controlled server variable instead of REMOTE USER. An attacker controlling this variable can modify the LDAP search filter, potentially bypassing authentication or executing unauthorized LDAP queries.

Recommendations Update to version 2.5.36 or later.