Skip to main content

Kibana Fleet CVE-2026-49095

| EUVDEUVD-2026-33033 MEDIUM
Improper Input Validation (CWE-20)
2026-05-28 elastic GHSA-p9vc-h7rw-q6hq
6.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
6.5 MEDIUM
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None

Lifecycle Timeline

3
Severity Changed
May 28, 2026 - 21:22 NVD
HIGH MEDIUM
CVSS changed
May 28, 2026 - 21:22 NVD
7.2 (HIGH) 6.5 (MEDIUM)
Analysis Generated
May 28, 2026 - 21:21 vuln.today

DescriptionCVE.org

Improper Input Validation (CWE-20) in the Kibana Fleet agent policy management feature can lead to privilege escalation. An authenticated user with Fleet management privileges can manipulate agent policy configuration by injecting values into a configuration override mechanism that is not adequately validated. An attacker can cause Elastic Agents to be issued API keys with elevated Elasticsearch privileges, potentially granting unauthorized read and write access to sensitive Elasticsearch security indices beyond what is intended for the Fleet management role.

AnalysisAI

Privilege escalation in Elastic Kibana's Fleet agent policy management feature allows authenticated Fleet administrators to inject unvalidated values into a configuration override mechanism, causing Elastic Agents to be provisioned with API keys carrying elevated Elasticsearch privileges. Successful exploitation yields unauthorized read/write access to sensitive Elasticsearch security indices beyond the Fleet role's intended scope. No public exploit identified at time of analysis, and CISA KEV does not list this issue.

Technical ContextAI

Kibana Fleet is the centralized management plane for Elastic Agents, used to push integration policies and credentials to fleet-managed endpoints. When an administrator defines or updates an agent policy, Kibana mints Elasticsearch API keys that the agents use to ship data to specified indices. The vulnerability is rooted in CWE-20 (Improper Input Validation): a configuration override path within agent policy management accepts attacker-controlled fields without enforcing that the resulting API key privileges remain within the Fleet role's authorization boundary, effectively allowing role-scope confusion at the Elasticsearch RBAC layer. The affected component is identified by cpe:2.3:a:elastic:kibana:*:*:*:*:*:*:*:* and centers on the Fleet/agent-policy subsystem rather than core Kibana UI.

RemediationAI

Vendor-released patch: upgrade Kibana to 8.19.16, 9.3.5, or 9.4.2 (or later) per Elastic advisory ESA-2026-38 at https://discuss.elastic.co/t/kibana-fleet-8-19-16-9-3-5-and-9-4-2-security-update-esa-2026-38/386559, which is the only complete fix because the issue lives in server-side validation of agent policy overrides. Until patched, compensating controls are to tightly restrict assignment of the Fleet management role (e.g. the built-in 'fleet_all' and equivalent custom roles) to a small, trusted operator group, audit recent agent policy changes and any newly issued Elastic Agent API keys for unexpected Elasticsearch privileges, and rotate Fleet-issued API keys after upgrade; the trade-off is operational overhead and brief agent re-enrollment churn. As an additional hardening step, separate the Kibana Fleet instance from the Elasticsearch cluster that hosts production security indices where feasible, accepting the cost of running a dedicated Fleet stack.

CVE-2015-1427 CRITICAL POC
9.8 Feb 17

The Groovy scripting engine in Elasticsearch before 1.3.8 and 1.4.x before 1.4.3 allows remote attackers to bypass the s

CVE-2014-3120 HIGH POC
8.1 Jul 28

The default configuration in Elasticsearch before 1.2 enables dynamic scripting, which allows remote attackers to execut

CVE-2017-12629 CRITICAL POC
9.8 Oct 14

Remote code execution occurs in Apache Solr before 7.1 with Apache Lucene before 7.1 by exploiting XXE in conjunction wi

CVE-2015-5531 MEDIUM POC
5.0 Aug 17

Directory traversal vulnerability in Elasticsearch before 1.6.1 allows remote attackers to read arbitrary files via unsp

CVE-2015-3337 MEDIUM POC
4.3 May 01

Directory traversal vulnerability in Elasticsearch before 1.4.5 and 1.5.x before 1.5.2, when a site plugin is enabled, a

CVE-2019-7609 CRITICAL POC
10.0 Mar 25

Kibana versions before 5.6.15 and 6.6.1 contain an arbitrary code execution flaw in the Timelion visualizer. Rated criti

CVE-2020-7012 HIGH POC
8.8 Jun 03

Kibana versions 6.7.0 to 6.8.8 and 7.0.0 to 7.6.2 contain a prototype pollution flaw in the Upgrade Assistant. Rated hig

CVE-2018-17246 CRITICAL POC
9.8 Dec 20

Kibana versions before 6.4.3 and 5.6.13 contain an arbitrary file inclusion flaw in the Console plugin. Rated critical s

CVE-2022-31115 HIGH POC
8.8 Jun 30

opensearch-ruby is a community-driven, open source fork of elasticsearch-ruby. Rated high severity (CVSS 8.8), this vuln

CVE-2021-32743 HIGH POC
8.8 Jul 15

Icinga is a monitoring system which checks the availability of network resources, notifies users of outages, and generat

CVE-2023-43116 HIGH POC
7.8 Dec 22

A symbolic link following vulnerability in Buildkite Elastic CI for AWS versions prior to 6.7.1 and 5.22.5 allows the bu

CVE-2021-22146 HIGH POC
7.5 Jul 21

All versions of Elastic Cloud Enterprise has the Elasticsearch “anonymous” user enabled by default in deployed clusters.

Share

CVE-2026-49095 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy