This vulnerability (CVE-2026-49095) arises from improper input validation (CWE-20) in Kibana's Fleet agent policy management feature. Authenticated users with Fleet management privileges can inject manipulated values into a configuration override mechanism that lacks adequate validation controls. This flaw enables attackers to escalate privileges by causing Elastic Agents to be issued API keys with higher Elasticsearch privileges than intended, potentially granting unauthorized access to sensitive security indices. The vulnerability affects Kibana versions 8.0.0, 9.0.0, and 9.4.0. The CVSS 3.1 score is 7.2, reflecting a high severity with network attack vector, low attack complexity, high privileges required, no user interaction, and high impact on confidentiality and integrity but no impact on availability. There is no vendor advisory or patch information currently available, and the product is not a cloud service, so remediation status is unknown.

Successful exploitation allows an authenticated user with Fleet management privileges to escalate their access by manipulating agent policy configurations. This results in Elastic Agents receiving API keys with elevated Elasticsearch privileges, potentially enabling unauthorized read and write access to sensitive Elasticsearch security indices. This compromises the confidentiality and integrity of sensitive data managed by Elasticsearch. Availability is not impacted. No known exploits are reported in the wild at this time.

Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until an official fix is released, restrict Fleet management privileges to trusted users only and monitor for unusual policy configuration changes. Avoid granting Fleet management privileges broadly. Follow updates from Elastic for any forthcoming patches or official mitigations.