PT-2026-29281 · Floragunn · Search Guard Flx
Published
2026-03-31
·
Updated
2026-03-31
·
CVE-2026-4819
CVSS v3.1
4.9
Medium
| AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N |
In Search Guard FLX versions from 1.0.0 up to 4.0.1, the audit logging feature might log user credentials from users logging into Kibana.
Fix
Insufficiently Protected Credentials
Insertion into Log File
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Search Guard Flx