VYPR
Unrated severityNVD Advisory· Published Mar 19, 2026· Updated Mar 19, 2026

Missing Authorization in Kibana Leading to Unauthorized Endpoint Response Action Configuration

CVE-2026-26939

Description

Missing Authorization (CWE-862) in Kibana’s server-side Detection Rule Management can lead to Unauthorized Endpoint Response Action Configuration (host isolation, process termination, and process suspension) via CAPEC-1 (Accessing Functionality Not Properly Constrained by ACLs). This requires an authenticated attacker with rule management privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Elastic/Kibanallm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 9.0.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.