Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2026-49090

Uncontrolled Resource Consumption (CWE-400) in Elasticsearch can lead to a denial of service via Excessive Allocation (CAPEC-130). An authenticated user can submit a specially crafted bulk request that causes sustained high CPU consumption, which can render the affected node unable to process requests.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 16.3%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2026-49090


Contact Us

Shodan ® - All rights reserved