CVE-2026-4819

Summary

In Search Guard FLX versions from 1.0.0 up to 4.0.1, the audit logging feature might log user credentials from users logging into Kibana.

Affected Software

VendorProductVersion RangeStatus
floragunnSearch Guard FLX1.0.0 <= 4.0.1affected

Weaknesses

  • CWE-532: CWE-532
  • CWE-522: CWE-522

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References