A vulnerability classified as problematic was found in MISP up to 2.5.39 . This vulnerability affects unknown code of the component Setting Handler . The manipulation results in incorrect authorization. This vulnerability is reported as CVE-2026-54357 . The attack can be launched remotely. No exploit exists. Upgrading the affected component is advised.