← volver
CVE-2026-4818

Some management operations on data streams are not properly restricted when user does not have the necessary privileges

CVSS 6.8 MEDIUMEPSS 0.2%CWE-285CWE-862
In Search Guard FLX versions from 3.0.0 up to 4.0.1, there exists an issue which allows users without the necessary privileges to execute some management operations against data streams.
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
Productos afectados
floragunn · Search Guard FLX

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://docs.search-guard.com/latest/changelog-searchguard-flx-4_1_0https://search-guard.com/cve-advisory/