A vulnerability, which was classified as critical , has been found in MISP up to 2.5.39 . This issue affects the function CollectionsController::edit . This manipulation causes authorization bypass. This vulnerability appears as CVE-2026-54361 . The attack may be initiated remotely. There is no available exploit. It is advisable to upgrade the affected component.