A vulnerability, which was classified as problematic , was found in MISP up to 2.5.39 . This affects an unknown function of the component Password Reset Handler . Executing a manipulation can lead to incorrect authorization. This vulnerability appears as CVE-2026-54358 . The attack may be performed from remote. There is no available exploit. You should upgrade the affected component.