Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-56149

Allocation of Resources Without Limits or Throttling (CWE-770) in Elasticsearch can lead to a denial of service via Excessive Allocation (CAPEC-130). A user with elevated privileges can submit a specially crafted machine learning request that causes excessive memory consumption, which may render the affected node unavailable.
Exploit prediction scoring system (EPSS) score
CVSS Severity
CVSS v3 Score 4.9


Contact Us

Shodan ® - All rights reserved