PatchSiren cyber security CVE debrief
CVE-2026-54357 misp CVE debrief
CVE-2026-54357 is an improper authorization vulnerability in MISP that allowed an authenticated organization administrator to access or modify user settings belonging to site administrator accounts within the same organization. The affected access-control checks scoped administrative actions by organization membership but did not exclude higher-privileged site administrator users. As a result, an organization administrator could potentially view or alter site administrator user settings and related login profile information, crossing the intended privilege boundary between organization administration and site-wide administration. The patch hardens the ACL logic by excluding site administrator accounts from organization administrator–managed user sets, adding explicit authorization failure when a target user is not administrable, and ensuring user setting and login profile operations fail closed.
- Vendor
- misp
- Product
- Unknown
- CVSS
- MEDIUM 5.1
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-12
- Original CVE updated
- 2026-06-12
- Advisory published
- 2026-06-12
- Advisory updated
- 2026-06-12
Who should care
Users of MISP, especially those with organization administrator or site administrator roles, should be aware of this vulnerability and ensure they are running a patched version of the software.
Technical summary
The vulnerability has a CVSS score of 5.1 and is classified as MEDIUM severity. It can be exploited by an authenticated organization administrator to access or modify user settings of site administrators within the same organization.
Defensive priority
MEDIUM
Recommended defensive actions
- Apply the patch to harden the ACL logic and prevent unauthorized access to site administrator user settings.
- Review and update access controls to ensure organization administrators cannot modify site administrator user settings.
Evidence notes
The CVE record and NVD detail pages provide additional information about this vulnerability.
Official resources
-
CVE-2026-54357 CVE record
CVE.org
-
CVE-2026-54357 NVD detail
NVD
-
Source item URL
nvd_modified
-
Source reference
5a6e4751-2f3f-4070-9419-94fb35b644e8
CVE-2026-54357 was published on 2026-06-12T20:16:47.583Z and has not been modified since then.