← Volver a CVEs
CVE-2026-4799
MEDIUM4.3
Descripcion
In Search Guard FLX up to version 4.0.1, it is possible to use specially crafted requests to redirect the user to an untrusted URL.
Detalles CVE
Puntuacion CVSS v3.14.3
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioREQUIRED
Publicado3/31/2026
Ultima modificacion4/3/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
search-guard:flx
Debilidades (CWE)
CWE-601
Referencias
https://docs.search-guard.com/latest/changelog-searchguard-flx-4_1_0(security@search-guard.com)
https://search-guard.com/cve-advisory/(security@search-guard.com)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.