MISP before 2.4.115 allows privilege escalation in certain situations. After updating to 2.4.115, escalation attempts are blocked by the __checkLoggedActions function with a βThis could be an indication of an attempted privilege escalation on older vulnerable versions of MISP (<2.4.115)β message.