CVE-2026-44379 — MEDIUM (5.3)

Q: How severe is CVE-2026-44379?

CVE-2026-44379 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2026-44379?

Check the references section above for vendor advisories and patch information. Affected products include: Misp Misp.

Vulnerability Description

MISP is an open source threat intelligence and sharing platform. Prior to 2.5.37, MISP Collections did not enforce RFC 4122 UUID validation on the uuid field. As a result, a user able to create or modify Collection records could submit malformed UUID values, potentially causing integrity issues or unexpected behaviour in code paths that assume Collection UUIDs are valid identifiers. This vulnerability is fixed in 2.5.37.

CVSS Score

5.3

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Misp	Misp	< 2.5.37

Related Weaknesses (CWE)

CWE-20

References

https://github.com/MISP/MISP/commit/f8b20358c3cd8fd3d784452901876f2db0acbf05Patch
https://github.com/MISP/MISP/security/advisories/GHSA-jrvj-84mg-8f29Third Party Advisory

FAQ

What is CVE-2026-44379?

CVE-2026-44379 is a vulnerability with a CVSS score of 5.3 (MEDIUM). MISP is an open source threat intelligence and sharing platform. Prior to 2.5.37, MISP Collections did not enforce RFC 4122 UUID validation on the uuid field. As a result, a user able to create or mod...

How severe is CVE-2026-44379?

CVE-2026-44379 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2026-44379?

Check the references section above for vendor advisories and patch information. Affected products include: Misp Misp.