A vulnerability has been found in MISP up to 2.5.38 and classified as critical . This affects the function overCorrelations of the file app/Controller/CorrelationsController.php of the component Correlations over-correlation Endpoint . Performing a manipulation results in improper input validation. This vulnerability was named CVE-2026-10863 . The attack may be initiated remotely. There is no available exploit. The affected component should be upgraded.