CVE-2026-0531
published 2026-01-13CVE-2026-0531: Allocation of Resources Without Limits or Throttling (CWE-770) in Kibana Fleet can lead to Excessive Allocation (CAPEC-130) via a specially crafted bulk…
PriorityP339medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
EPSS
0.42%
33.3th percentile
Allocation of Resources Without Limits or Throttling (CWE-770) in Kibana Fleet can lead to Excessive Allocation (CAPEC-130) via a specially crafted bulk retrieval request. This requires an attacker to have low-level privileges equivalent to the viewer role, which grants read access to agent policies. The crafted request can cause the application to perform redundant database retrieval operations that immediately consume memory until the server crashes and becomes unavailable to all users.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| elastic | kibana | >= 7.10.0 < 7.17.29 | 7.17.29 |
| elastic | kibana | 7.10.0 – 7.17.29 | — |
| elastic | kibana | >= 8.0.0 < 8.19.10 | 8.19.10 |
| elastic | kibana | 8.0.0 – 8.19.9 | — |
| elastic | kibana | >= 9.0.0 < 9.1.10 | 9.1.10 |
| elastic | kibana | 9.0.0 – 9.1.9 | — |
| elastic | kibana | >= 9.2.0 < 9.2.4 | 9.2.4 |
| elastic | kibana | 9.2.0 – 9.2.3 | — |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
vendor_redhat6.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-g37r-x966-x536: Allocation of Resources Without Limits or Throttling (CWE-770) in Kibana Fleet can lead to Excessive Allocation (CAPEC-130) via a specially crafted bu
ghsa_unreviewed·2026-01-13
CVE-2026-0531 [MEDIUM] CWE-770 GHSA-g37r-x966-x536: Allocation of Resources Without Limits or Throttling (CWE-770) in Kibana Fleet can lead to Excessive Allocation (CAPEC-130) via a specially crafted bu
Allocation of Resources Without Limits or Throttling (CWE-770) in Kibana Fleet can lead to Excessive Allocation (CAPEC-130) via a specially crafted bulk retrieval request. This requires an attacker to have low-level privileges equivalent to the viewer role, which grants read access to agent policies. The crafted request can cause the application to perform redundant database retrieval operations that immediately consume memory until the server crashes and becomes unavailable to all users.
Red Hat
kibana: allocation of resources without limits or throttling via specially crafted bulk retrieval request
vendor_redhat·2026-01-13·CVSS 6.5
CVE-2026-0531 [MEDIUM] CWE-770 kibana: allocation of resources without limits or throttling via specially crafted bulk retrieval request
kibana: allocation of resources without limits or throttling via specially crafted bulk retrieval request
Allocation of Resources Without Limits or Throttling (CWE-770) in Kibana Fleet can lead to Excessive Allocation (CAPEC-130) via a specially crafted bulk retrieval request. This requires an attacker to have low-level privileges equivalent to the viewer role, which grants read access to agent policies. The crafted request can cause the application to perform redundant database retrieval operations that immediately consume memory until the server crashes and becomes unavailable to all users.
A flaw was found in Kibana. An attacker with low-level privileges equivalent to the viewer role, can exploit this vulnerability by sending a specially crafted bulk retrieval request. This request ca
No detection rules found.
No public exploits indexed.
2026-01-13
Published