CVE-2026-44363

Vulnerability Description

MISP modules are autonomous modules that can be used to extend MISP for new services. Prior to 3.0.7, an unsafe remote resource fetching vulnerability existed in MISP Modules expansion modules. The html_to_markdown module accepted arbitrary HTTP(S) URLs without sufficient validation, which could allow Server-Side Request Forgery against loopback, private, or link-local network resources. Additionally, the qrcode module disabled TLS certificate verification when retrieving remote images, exposing requests to potential man-in-the-middle interception or response tampering. The issue was fixed by validating URL schemes, blocking local and private address ranges, resolving hostnames before fetching, enforcing request timeouts, and re-enabling TLS certificate verification. This vulnerability is fixed in 3.0.7.

Related Weaknesses (CWE)

References

• https://github.com/MISP/misp-modules/commit/01a522f2772fc31eeed379ccf23750c8a3d4
• https://github.com/MISP/misp-modules/security/advisories/GHSA-fhq3-2gf3-8f3j

FAQ

What is CVE-2026-44363?

CVE-2026-44363 is a documented vulnerability. MISP modules are autonomous modules that can be used to extend MISP for new services. Prior to 3.0.7, an unsafe remote resource fetching vulnerability existed in MISP Modules expansion modules. The ht...

How severe is CVE-2026-44363?

CVSS scoring is not yet available for CVE-2026-44363. Check NVD for updates.

Is there a patch for CVE-2026-44363?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.