CNNVD-202601-1977 Information

CNNVD ID

CNNVD-202601-1977

Related CVE

CVE-2026-0530

• CNNVD Published: 2026-01-13

Description (Chinese)

Elastic Kibana Fleet是荷兰Elastic公司的一个集中管理和监控Elastic Agent的组件。 Elastic Kibana Fleet存在安全漏洞，该漏洞源于资源分配无限流或无限流，可能导致通过特制请求进行过度分配，造成服务降级或完全不可用。

Description (English)

Elastic Kibana Fleet is a component of the Dutch company Elastic that centrally manages and monitors Elastic Agent. Elastic Kibana Fleet has a security loophole, which stems from unlimited or unlimited flows in the allocation of resources, which may lead to overallocation through ad hoc requests, leading to downgrading of services or their total non-availability.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Elastic

Published

2026-01-13

Last Modified

2026-02-24

References

https://discuss.elastic.co/t/kibana-8-19-10-9-1-10-9-2-4-security-update-esa-2026-03/384521

Patch

https://www.elastic.co/kibana