Description
Uncontrolled Resource Consumption (CWE-400) in Kibana can lead to denial of service via Excessive Allocation (CAPEC-130). An authenticated user can send a specially crafted compressed request payload that is processed prior to authorization checks, causing excessive memory and CPU resource consumption that can result in a Kibana instance becoming unresponsive or crashing.
Published: 2026-05-28
Score: 6.5 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an uncontrolled resource consumption flaw (CWE-400). An authenticated user can supply a specially crafted compressed request that is decompressed before authorization checks, leading to excessive memory and CPU usage. This excessive allocation can cause a Kibana instance to become unresponsive or crash, resulting in a denial of service.

Affected Systems

The affected product is Elastic Kibana. No specific version information is provided in the available data, so all releases of this product are potentially impacted.

Risk and Exploitability

The CVSS score of 6.5 indicates a medium severity impact. EPSS data is not available, so the likelihood of exploitation is uncertain but could be higher in environments where authentication is easily achieved. The vulnerability is not listed in CISA KEV, but the attack requires an authenticated user and the malicious payload is processed before authorization, meaning that anyone who can authenticate to the Kibana instance could potentially trigger the resource exhaustion.

Generated by OpenCVE AI on May 28, 2026 at 21:35 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest Elastic Kibana security patch as announced in the Elastic security update for this CVE.
  • Configure authentication and authorization to limit the number of concurrent or compressed requests that can be processed by Kibana.
  • Monitor system resource usage and set alerts on memory and CPU thresholds to detect and mitigate potential attacks early.

Generated by OpenCVE AI on May 28, 2026 at 21:35 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 28 May 2026 21:45:00 +0000

Type Values Removed Values Added
First Time appeared Elastic
Elastic kibana
Vendors & Products Elastic
Elastic kibana

Thu, 28 May 2026 20:45:00 +0000

Type Values Removed Values Added
Description Uncontrolled Resource Consumption (CWE-400) in Kibana can lead to denial of service via Excessive Allocation (CAPEC-130). An authenticated user can send a specially crafted compressed request payload that is processed prior to authorization checks, causing excessive memory and CPU resource consumption that can result in a Kibana instance becoming unresponsive or crashing.
Title Uncontrolled Resource Consumption in Kibana Leading to Denial of Service
Weaknesses CWE-400
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H'}

Subscriptions

Elastic Kibana
cve-icon MITRE

Status: PUBLISHED

Assigner: elastic

Published:

Updated: 2026-05-28T19:42:11.414Z

Reserved: 2026-04-27T10:14:34.318Z

Link: CVE-2026-42400

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-05-28T21:16:30.497

Modified: 2026-05-28T21:16:30.497

Link: CVE-2026-42400

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-28T21:30:26Z

Weaknesses