A vulnerability, which was classified as critical , was found in MISP up to 2.5.41 . This affects an unknown part. Executing a manipulation can lead to session fixiation. This vulnerability is tracked as CVE-2026-56425 . The attack can be launched remotely. No exploit exists. A patch should be applied to remediate this issue.