Medium severity6.8NVD Advisory· Published Mar 31, 2026· Updated Apr 3, 2026

CVE-2026-4818

Description

In Search Guard FLX versions from 3.0.0 up to 4.0.1, there exists an issue which allows users without the necessary privileges to execute some management operations against data streams.

Affected products

Search Guard/Flx
cpe:2.3:a:search-guard:flx:*:*:*:*:*:*:*:*
Range: >=3.0.0,<4.1.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

search-guard.com/cve-advisory/nvdVendor Advisory
docs.search-guard.com/latest/changelog-searchguard-flx-4_1_0nvdRelease Notes

News mentions

No linked articles in our index yet.

cvss	0.442
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000