All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2026-49087
MEDIUMpublished 2026-07-01 17:16 UTC · 3 days ago · modified 2026-07-02 17:53 UTC
6.5
CVSS / 10
// description
Allocation of Resources Without Limits or Throttling (CWE-770) in Kibana can lead to a denial of service via Excessive Allocation (CAPEC-130). An authenticated user can submit a specially crafted bulk deletion request that causes excessive resource consumption, which may render Kibana unavailable.
// weaknesses (CWE)
- CWE-770