PT-2026-40807 · Misp · Misp
Published
2026-05-13
·
Updated
2026-05-13
·
CVE-2026-44379
CVSS v4.0
5.3
Medium
| Vector | AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
MISP versions prior to 2.5.37
Description
MISP Collections fails to enforce RFC 4122 UUID validation on the
uuid field. This allows users with permissions to create or modify Collection records to submit malformed UUID values, which may lead to integrity issues or unexpected behavior in code paths that assume these identifiers are valid.Recommendations
Update to version 2.5.37.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Misp