CVE-2026-33464

Same vendor

• CVE-2026-49095 — Improper Input Validation (CWE-20) in the Kibana Fleet agent policy management feature can lead to privilege escalation (6.5 MEDIUM)
• CVE-2026-49094 — Uncontrolled Resource Consumption (CWE-400) in Kibana can lead to denial of service via Excessive Allocation (CAPEC-130) (6.5 MEDIUM)
• CVE-2026-49093 — Server-Side Request Forgery (CWE-918) in Kibana can allow an authenticated user with connector management privileges to bypass the operat... (6.3 MEDIUM)
• CVE-2026-42400 — Uncontrolled Resource Consumption (CWE-400) in Kibana can lead to denial of service via Excessive Allocation (CAPEC-130) (6.5 MEDIUM)
• CVE-2026-42399 — Uncontrolled Resource Consumption (CWE-400) in Kibana can lead to denial of service via Excessive Allocation (CAPEC-130) (6.5 MEDIUM)

Same CWE

• CVE-2026-41708 — In Spring Cloud Sleuth, it is possible for a user to provide specially crafted calls that may cause a denial-of-service (DoS) condition (7.5 HIGH)
• CVE-2026-5079 — Impact: multer versions 1.0.0 through 2.1.1 and 3.0.0-alpha.1 are vulnerable to a Denial of Service via deeply nested field names in mult... (7.5 HIGH)
• CVE-2026-50011 — Netty is a network application framework for development of protocol servers and clients (7.5 HIGH)
• CVE-2026-48043 — Netty is a network application framework for development of protocol servers and clients (5.3 MEDIUM)
• CVE-2026-47244 — Netty is a network application framework for development of protocol servers and clients (5.3 MEDIUM)