A vulnerability classified as critical was found in MISP up to 2.5.38 . This impacts an unknown function of the component Authentication Plugin Handler . Executing a manipulation can lead to improper authentication. This vulnerability appears as CVE-2026-10611 . The attack may be performed from remote. There is no available exploit. It is advisable to implement a patch to correct this issue.