CVE-2026-26939

Name of the Vulnerable Software and Affected Versions Kibana (affected versions not specified)

Description A missing authorization issue (CWE-862) exists in Kibana’s server-side Detection Rule Management. This can allow an authenticated attacker with rule management privileges to perform unauthorized endpoint response actions, including host isolation, process termination, and process suspension, exploiting CAPEC-1 (Accessing Functionality Not Properly Constrained by ACLs). The issue involves improper access control restrictions, potentially allowing unauthorized configuration changes.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.