Incorrect authorization in Elastic Defend - CVE-2026-56152
Published: July 2, 2026
Elastic Defend
Detailed vulnerability description
The vulnerability allows a remote user to disclose sensitive information.
The vulnerability exists due to incorrect authorization in Elastic Defend response actions when accessing response action data. A remote user can access response action data they are not authorized to view to disclose sensitive information.
Only deployments that use Elastic Defend response actions are vulnerable.