CVE-2026-56447 | MISP up to 2.5.41 INI File Kafka_rdkafka_config inclusion of functionality from untrusted control sphere

Inserito da Angelo Barbosa | Giu 22, 2026 | CVE

A vulnerability classified as problematic was found in MISP up to 2.5.41. This vulnerability affects unknown code of the component INI File Handler. Executing a manipulation of the argument Kafka_rdkafka_config can lead to inclusion of functionality from untrusted control sphere.

The identification of this vulnerability is CVE-2026-56447. The attack may be launched remotely. There is no exploit available.

Upgrading the affected component is advised.

CVE-2026-56447 | MISP up to 2.5.41 INI File Kafka_rdkafka_config inclusion of functionality from untrusted control sphere

Post correlati

CVE-2024-11067 | D-Link DSL6740C MAC Address path traversal

CVE-2024-2362 | parisneo lollms-webui up to 9.3 on Windows Request del_preset absolute path traversal

CVE-2025-55757 | Virtuemart Component up to 4.4.10 on Joomla cross site scripting

CVE-2025-6017 | Red Hat Advanced Cluster Management for Kubernetes 2 up to 2.12.4 UI exposure of private personal information to an unauthorized actor