Input validation error in Kibana - CVE-2026-56151
Published: July 2, 2026
Kibana
Detailed vulnerability description
The vulnerability allows a remote user to cause a denial of service.
The vulnerability exists due to improper input validation in Fleet policy input handling when processing a specially crafted Fleet policy input. A remote user can submit a specially crafted Fleet policy input to cause a denial of service.
Only deployments that use Fleet are vulnerable.