A vulnerability, which was classified as critical , has been found in OpenCTI up to 6.9.0 . Affected by this vulnerability is the function IndividualDeletionDeleteMutation of the component API . This manipulation causes improper authorization. This vulnerability appears as CVE-2026-21886 . The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.